Automated  routine  Products  from  BMC  and  HP  seen 

helping  customers  build  intelligent  data  centers.  PAGE  10. 


Lotus  Notes  turns  15  Proud  papa  Ray  Ozzie 

looks  back  on  what  they  got  right  and  wrong.  PAGE  74. 
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|j  Dorman  on  telecom  Darwinism 

AT&T  boss  David  Dorman  talks 
with  Network  World  about: 


•  Not  only  surviving  but  thriving  as 
what  he  calls  the  fittest  of  the  IXCs. 


Pumping  up  sagging  revenue 
through  new  business  services. 

The  possibility  of  being  swallowed 
up  in  an  acquisition. 

And  what  the  FCC  should  do  about 
intercarrier  compensation. 

Page  9 


ALSO  IN  THIS  ISSUE: 


The  future  of  the  IXCs:  Once-mighty  interexchange 
carriers  AT&T,  MCI  and  Sprint  now  must  evolve  or  face 
extinction.  Three  telecom  experts  share  their  insight  into 
what  it  will  take  for  these  companies  to  survive.  Page  52. 


CATRINA  GENOVESE 


Municipal  WLAN  plans 
draw  mixed  reactions 


Cisco  pushing  Catalyst 
capabilities  to  the  edge 


■  BY  JIM  DUFFY 

Cisco’s  latest  wave  of  LAN 
switching  announcements  fur¬ 
ther  blurs  the  demarcation  be¬ 
tween  edge  and  backbone  cor¬ 
porate  networks. 

Cisco  last  week  unleashed 
more  than  20  Catalyst  products  to 
push  more  core  features,  such  as 
10G  Ethernet  uplinks  and  sophis¬ 
ticated  software  services,  into 
wiring  closets.  Core-like  security 
and  high  availability  are  also  now 
spreading  to  the  edge. 

Analysts  liken  the  trend  to  the 
broadening  intelligence  of  ser¬ 
vice  provider  networks. 

“If  you  look  at  the  way  carrier 
networks  are  designed  where 
the  core  itself  is  relatively  dumb 
and  all  of  the  intelligence  is  dis¬ 
tributed  at  the  edge,  it’s  just  a 


much  more  efficient  way  of 
doing  it,"  says  Zeus  Kerravala,  an 
analyst  at  The  Yankee  Group.  “If 
you  are  talking  about  user  poli¬ 
cies  and  trying  to  do  things  on 
an  individual  port  or  user  basis, 
you  want  to  push  that  function¬ 
ality  out  as  far  as  you  can.” 

One  driver  is  the  availability  of 
Gigabit  Ethernet  to  the  desktop. 
PCs  with  integrated  10/1 00/ 1 OOOM 


■  HP,  Alcatel  announce  their  plans 
on  the  10G  front.  Page  14. 

bit/sec  Ethernet  jacks  are  now 
more  prevalent  than  those  with¬ 
out.  Cisco’s  announcements  in¬ 
cluded  an  IP  phone  with  a  Gigabit 
Ethernet  link. 

Another  driver  is  that  prices  for 
10G  bit/sec  Ethernet  products 

See  Cisco,  page  14 


Edgy  Catalyst 

New  Supervisor  Engines  for  the  Catalyst 
6500  (right)  and  4500  bring  advanced 
features  to  wiring  closets,  such  as 


•  DoS  attack  mitigation 

•  High-availabiiity  IOS  image. 

•  10G  uplinks.  . 


•  _  -  3C 


1 


■  BY  JOHN  COX 

A  public  political  spat  in  Penn¬ 
sylvania  last  week  threw  light  on 
potential  issues  that  might  stymie 
citywide  wireless  LANs  intended 
to  give  residents  and  businesses 
broadband  Internet  access. 

Such  networks  are  pitting  cities 
such  as  Philadelphia  that  want  to 


build  their  own  Wi-Fi  networks 
against  carriers  such  as  Verizon. 
Carriers,  which  fear  losing  cus¬ 
tomers  and  influence,  are  lobby¬ 
ing  hard  for  laws  that  will  block 
cities  and  towns  from  building 
such  networks. 

It’s  an  issue  that  has  network 
professionals  trying  to  gauge 

See  Municipal,  page  12 


Going  once,  going  twice . . .  gone  for  good? 

Auctioneer  sees  sell-offs  of  company  assets  as  a  chance  for  ‘rebirth.’ 


■  BY  MICHAEL  COONEY 

A  Stanley  Bostitch  heavy-duty  stapler  sold 
for  $10.  A  reception  office  couch  and 
chairs  went  for  $205.  One  lucky  bidder 
fetched  an  866-MHz  Dell  PC  for  $300. 

It  wasn’t  supposed  to  end  this  way  for 
Appian  Communications. 

But  don’t  look  forlorn  Noonan  to  shed  any 
tears.The  47-year-old  is  in  the  business  of  sell¬ 
ing  the  remains  of  failed  high-tech  firms,  and 
earlier  this  fall  he  auctioned  off  what  was  left 

See  Auction,  page  16 
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Mr.  500  Servers 
in  156  Countries 
Managed  from 
1  Location 


Department  of 
Foreign  Affairs, 
Switzerland 


Your  potential.  Our  passion. 


"We  have  3,000  PCs  based  everywhere  from 
Argentina  to  Vietnam,  and  now  our  team  can 
update  them  all  from  headquarters." 

Viktor  Portmann 

Project  Manager,  Department  of  Foreign  Affairs,  Switzerland 


Make  a  name  for  yourself  with  Windows  Server  System. 

Microsoft  Windows  Server  System  makes  it  easier  for 
Switzerland's  Federal  Department  of  Foreign  Affairs 
(DFA)  to  manage  the  infrastructure  serving  their 
embassies  and  consulates  in  156  countries.  Here's 
how:  By  using  Systems  Management  Server  2003 
and  Microsoft  Operations  Manager  2005,  DFA  can 
automatically  update  its  500  remote  servers  from  a 
central  location,  saving  over  $600,000  in  travel 
expenses  alone  in  the  past  year.  They've  also  been 
able  to  reduce  the  time  and  cost  of  maintenance, 
boost  user  productivity,  and  find  the  time  to  better 
prepare  for  expansion.  Software  that's  easier  to 
manage  is  software  that  helps  you  do  more  with 
less.  To  get  the  full  DFA  story  or  to  find  a  Microsoft 
Certified  Partner,  go  to  microsoft.com/wssystem 


Windows 
Server  System 


Windows  Server  System  "  includes: 


Server  Platform  Windows  Server’” 


Virtualization 

Virtual  Server 

Data  Management  &  Analysis 

SQL  Server’” 

Communications 

Exchange  Server 

Portals  &  Collaboration 

Office  SharePoinf  Portal  Server 

Integration 

BizTalk’  Server 

Management 

Systems  Management  Server 

Microsoft1  Operations  Manager 

Security 

Internet  Security  &  Acceleration  Server 

Plus  other  software  products 
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TEN  MOVES  AHEAD 


1.  LINUX  AND  SOLARIS™  OS 

APPLICATIONS  RUN  SIDE-BY-SIDE 


2.  CHOICE  OF  SYSTEMS - 
SPARC®,  AMD  OPTERON 


INTEL 


3.  RUNS  ON  OVER  250  SYSTEMS  FROM 
OTHER  MANUFACTURERS 


5.  MILITARY-GRADE  SECURITY, 

VIRUS-FREE  FOR  THE  LAST  20  YEARS 


6.  GUARANTEED  COMPATIBILITY 
GUARANTEED  INDEMNITY 


7.  UP  TO  80%  SYSTEM  UTILIZATION 
(NO  MAINFRAME  REQUIRED) 
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10.  SCALES  FROM  1-WAY  TO  100-WAY 


MOVE  AHEAD  TODAY  AT 
SUN.COM/SOLARIS10 


°  ,RADEMARKS  ^  R£GIST£R£D  "WDEMA,*S  OF  SUN  MtCROSYSTEMS.  INC.  IN  THE  UNITED  STATES  AND  OTHER  COUNTRIES.  ALL  SPARC  TRADEMARKS  ARE  -SEO  UNDER 

•  SEE  SOIARIS  APPLICATION  GUARANTEE  PROGRAM  FOR  MORE  DETAILS. 
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■  9  AT&T  CEO  David  Dorman  offers  Darwinian  take  on  telecom 
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sharing  information  possible. 
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storage-area  networks. 

Technology  Update 
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multicast. 
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security  devices. 
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wireless  LANs. 

■  22  Axalto  unveils  smart  card 
powered  by  .Net. 
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Features 

The  fate  of  the  IXCs: 

2005  is  the  year  for  AT&T,  MCI  and  Sprint  to  execute  or  face 
extinction.  Three  telecom  experts  recommend  the  strategies 
these  interexchange  carriers  should  take.  Page  52. 


Juniper's  NetScreen  Secure 
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■  22  Strix  to  add  outdoor  WLAN 
mesh  to  product  mix. 

■  22  Kevin  Tolly:  The  normal 
human  being  as  programmer. 
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Computing 

■  25  IT  executives  eye  Firefox  with 
hope. 

■  25  Server  vitualization  said  to  be 
on  the  rise. 
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Services 

■  31  Tivoli  plans  to  be  Big  Blue’s 
MVP. 

■  33  Opalis  looks  to  automate 
repetitive  tasks. 
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■  48  Mark  Gibbs:  Expanding 
waistlines  and  networks. 
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Opinions 
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■  51  Joel  Snyder:  Securing 
endpoints  in  SSL  VPNs. 
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■  33  Scott  Bradner: 

A  warning  about  future  telecom 
'reform'? 
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Messaging  wars:  Lotus,  Microsoft 
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Service  Providers 

■  41  Juniper  moves  to  intercon¬ 
nect  high-end  routers. 

■  41  Talking  denial  of  service  with 
Thomas  Arthur,  CEO  of  Arbor 
Networks. 

■  42  Johna  Till  Johnson: 

Carriers  need  to  get  a  clue  on 
VoIP  services. 


Management 

Strategies 

■  63  Raising  a  glass  to  IT  align¬ 
ment:  Diageo  North  America's  CIO 
describes  how  the  drinks  maker 


uses  technology  to  drive  brand 


lOGear’s  GPS 
Navigation  System 
provides  driving 
directions  to  Bluetooth- 


enabled  notebooks,  PDAs  or  cell 
phones.  Page  48. 


Exclusive 

Forum:  ‘Almost  laughable' 

That's  one  user's  reaction  to  our  story  last  week  on  carriers  who  want 
f  to  charge  for  audits  of  their  bills.  Read  what  he  has  to  say,  then  jump 
in  with  your  thoughts.  DocFinder:  4938 

Network  World  Fusion  Radio:  Building  a 
home  network 

Brian  Underdahl,  author  of  some  70  technology  books  including  "Home 
Networking:  A  Visual  Do-It-Yourself  Guide,"  discusses  some  of  the  con¬ 
siderations  one  should  think  about  when  building  a  home  network. 

DocFinder:  4939 

Network  Life  online 

Our  exclusive  coverage  for  your  after-hours  life  continues  this  week 
with  the  latest  breaking  news  and  how-tos  in  fields  from  home 
entertainment  systems  to  keeping  the  bad  guys  off  your  family's  home 
network.  DocFinder:  4940 


I  Columnists 

Wireless  Wizards 

Getting  management  buy-in  for  a  mesh  architecture 

The  Wizards  help  arm  a  user  with  the  information  he  needs  to 
convince  management  to  go  for  this  more  advanced  form  of 
wireless  networking. 

DocFinder:  4942 

Nutter’s  Help  Desk 

Networking  for  a  small  business 

Columnist  Ron  Nutter  helps  out  a  user  concerned  about  the 
complexities  of  networking  as  his  company  grows  in  size. 

DocFinder:  4943 

Small-Business  Tech 

New  search  tools  ease  desktop  frustration 
Columnist  James  Gaskin  says  products  from  Google, 
Copernic  and  Wizetech  Software  find  files  in  a  snap. 

DocFinder:  4944 


How  to 

Our  searchable  collection  of  how-to  stories  will  give  you  tips  and 
insights  on  improving  networks  from  the  home  to  the  enterprise. 

DocFinder:  4941 

Network  Encyclopedia 


Telework  Beat 

New  York,  feds  clash  over  telework 

State’s  revised  withholding  guidelines  stress  the  home  isn't  a 

viable  workplace,  says  Net.Worker  Managing  Editor  Toni 

Kistner  DocFinder:  4945 


Get  definitions  for  the  technologies,  hardware,  protocols,  standards  and 
more  behind  networking.  DocFinder:  5548 
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Breaking  News 

Go  online  for  breaking  news  every  day.  DocFinder:  6342 

Free  e-mail  newsletters 

Sign  up  for  any  of  more  than  40  newsletters  on  key  network  topics. 

DocFinder:  6343 


The  2005  IT  Road  Map 
Future  Vision 

Are  you  tasked  with  managing  next-generation  security? 
The  new  data  center?  WANs  and  LANs?  Applications 
management?  IP  telephony?  Wireless?  Your  new  year 
begins  early  at  this  Welcome-to-2005  Tech  Tour  event. 
Qualified  professionals  attend  free. 

DocFinder:  4646 
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IBM  reportedly  ditching  PC  business . . . 

■  IBM  plans  to  sell  its  PC  business  in  a  deal  likely  to  be  valued  in 
the  $1  billion  to  $2  billion  range,  The  New  York  Times  reported  late 
last  week.  The  newspaper  reported  that  IBM  is  in  serious  discus¬ 
sions  with  Lenovo, Chinas  largest  PC  maker. At  least  one  other  party 
is  interested  in  the  sale,  which  is  expected  to  include  IBM’s  entire 
range  of  desktop,  laptop  and  notebook  computers.  Big  Blue’s  PC 
business  accounts  for  about  12%  of  its  annual  $92  billion  revenue, 
but  rarely  contributes  more  than  a  modest  profit.  IBM  trails  Dell 
(16.8%)  and  HP  (15%)  in  PC  sales,  with  5.6%  of  the  market,  accord¬ 
ing  to  recent  figures  from  Gartner. 

. . .  while  landing  big  outsourcing  pacts 

■  IBM  last  week  said  it  had  sewed  up  outsourcing  deals  with  two  Danish  companies, 
A.P  Moller-Maersk  and  Danske  Bank,  worth  $1  billion. The  company  did  not  break  out 
the  compensation  from  each  deal.  In  a  nutshell,  IBM  said  it  would  provide  Maersk,  a 
container  shipping  company,  with  a  5-year  deal  to  offer  services  such  as  management 
consulting  and  software  development.  Danske  Bank,  Denmark’s  biggest  financial  group, 
signed  a  10-year  deal  for  IBM  to  work  its  worldwide  technology  systems. 

Sun,  Microsoft  issue  report  card 

■  Sun  and  Microsoft  last  week  provided  a  promised  end-of-year  progress  report  on  the  10- 
year  partnership  they  inked  in  April,  but  offered  few  details  beyond  the  assurance  they 
have  made  “small  but  significant  progress”  to  foster  interoperability  between  their  prod- 
ucts.The  two  said  they  are  working  on  compatibility  based  on  Advanced  Micro  Devices’ 
Opteron-based  servers  and  workstations. They  also  pointed  out  co-authorship  of  several 
Web  services  specifications,  including  WS-Eventing,  WS-MetadataExchange,  WS-Manage- 
ment  and  WS-Addressing,  which  has  been  submitted  to  the  World  Wide  Web  Consortium. 
The  two  said  they  are  working  on  ensuring  Sun  support  of  Microsoft’s  storage  APIs  on  Sun 
StorEdge  6920  storage  arrays.  Sun  also  reported  it  has  achieved  certification  for  its  ident¬ 
ity  software  running  on  Windows  Server,  and  is  working  to  validate  Sun  Java  System 
Access  Manager  and  Sun  Java  System  Identity  Manager  for  use  in  identity  deployments 
with  Active  Directory  as  the  credential  store.The  two  companies,  however,  did  not  report 
any  progress  on  unifying  the  competing  standards  they  support  for  identity  management. 

HP  reverses  course  on  HP-UX  map 

H  HP  has  abandoned  plans  to  integrate  a  number  of  advanced  technologies  it  acquired 
in  its  2002  purchase  of  Compaq  into  its  flagship  HP-UX  operating  system. The  computer 
maker  instead  has  decided  to  partner  with  Veritas  Software  to  bring  new  file  system  and 
clustering  capabilities  to  its  Unix  software,  the  two  companies  announced  last  week.  HP 
had  intended  to  integrate  two  features  from  the  Tru64  operating  system  into  its  Unix 
product,  which  would  have  improved  the  scalability  and  reliability  of  HP-UX.  Called  the 

COMPENDIUM 

Don’t  toss  that  old  PDA 

Skyscape,  which  makes  PDA-based  systems  for  the  healthcare  industry,  is  collecting 
old  PDAs  to  donate  to  doctors  in  East  Africa.  Skyscape  will  load  medical  reference 
text  on  the  devices  for  distribution  by  a  group  working  to  fight  AIDS  in  the  region. 

See  how  to  donate  at  www.nwfusion.com,  DocFinder:  4952. 


Good  -Bad  Ugly 

Apache  grows  up.  The  Apache  Software  Foundation,  a  volunteer 
organization  that  oversees  development  of  the  popular  Apache  Web  server,  may  soon 
have  some  full-time,  paid  staff,  including  an  executive  director.  The  group  "is  starting 
to  outstrip  the  ability  for  people  who  are  volunteers  to  be  able  to  keep  up  with  it 
and  effectively  manage  it,"  says  Brian  Behlendorf,  a  co-founder  and  director. 


Paying  the  price.  If  you  think  software  costs  a  lot  now,  you  haven't 
seen  anything  yet,  according  to  Gartner.  Companies  worldwide  could  see  their 
software  licensing  costs  increase  by Qt  lQQCt  Rno/  hu  onnR  l,nlDCC  thow  apt  cnnn 
to  renegotiate  existing  contracts,  the 
firm  says.  The  move  toward 
chip  architectures  and 
virtualization  are 
hardware  trends 
to  have  an  impact 
software 
Gartner  says. 


A  real  marketing  hit  This  might  be  the  most  desperate  marketing 
scheme  we've  come  across  in  the  network  industry,  and  we've  seen  some  bad  ones. 
A  Web  hosting  and  software  development  company  has  offered  to  pay  $10,000  to 
the  first  player  or  fan  involved  in  the  recent  fracas  during  the  Detroit  Pistons-lndiana 
Pacers  pro  basketball  game  who  is  willing  to  permanently  tattoo  the  company’s  logo 
on  his  or  her  fist.  The  company  GEO  said:  "We  do  not  condone  or  support  this  type 
of  behavior  under  any  circumstances.  But  chances  are  these  people  will  be  on 
camera  again  -  at  one  point  or  another  —  so  let's  see  if  they  want  to  launch  a 
marketing  career." 


Advanced  Filesystem  and  TruCluster,  the  features  were  scheduled  to  be  part  of  the  HP- 
UX  IliVersion  3  product  release,  which  was  expected  in  2006.  HP  said  it  had  hoped  to 
complete  the  work  by  year-end,  but  this  deadline  was  pushed  back  because  of  the  com¬ 
plexity  of  the  integration  work,  analysts  say 

Mozilla  Thunderbird  set  for  official  debut 

■  The  Mozilla  Foundation  has  unveiled  the  most  complete  preview  version  yet  of  its 
stand-alone  e-mail  application, Thunderbird,  with  the  final  product  only  days  from  release. 
The  latest  preview  comes  a  few  weeks  after  the  launch  of  its  Rrefox  browser  Version  1.0  , 
and  is  part  of  the  open  source  software  project’s  continuing  efforts  to  chip  away  market 
share  from  Microsoft’s  dominant  Internet  Explorer  (see  related  story, page  25).The  release 
candidate  of  Thunderbird  1.0  e-mail  management  software,  launched  last  week,  is  being 
positioned  as  similar  to  Microsoft’s  free  end-user  application  Outlook  Express,  but  without 
the  user  hassles  of  dealing  with  advertisements  and  spam.  Before  the  official  release  of 
Thunderbird  1.0,  slated  for  Tuesday  the  group  is  offering  the  preview  version  of  the  free 
client  for  last-minute  testing.  Based  on  the  Mozilla  code  base, Thunderbird  1.0  works  with 
most  operating  systems,  including  Windows,  Linux  and  Macintosh,  the  group  says. 

Lycos  yanks  anti-spam  screensaver 

■  Lycos  Europe  appeared  to  have  pulled  a  controversial  anti-spam  screensaver  pro¬ 
gram  from  its  site  late  last  week,  after  coming  under  fire  from  both  security  experts  and 
spammers. The  Web  site  previously  distributed  the  “Make  Love  Not  Spam”  screensaver, 
which  offers  to  turn  the  tables  on  spammers  by  overwhelming  their  Web  sites  with 
requests,  no  longer  offers  the  program  and  now  carries  the  message  “Stay  Tuned.” 
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Introducing  DuPont™  certified  limited  combustible  cable.  In  the  event  of  a  fire,  securing  your 
business’  uptime  is  crucial.  The  data  communications  cable  you  choose  could  play  a  key  role  in 
protecting  your  network  technology  investment.  DuPont™ certified  cable  produces  20  times  less  smoke 
than  other  plenum  rated  cables.  And  less  smoke  means  less  costly  downtime,  making  it  the  most 
advanced  fire  safety  cable  technology  available  today.  To  learn  more  about  DuPont'M  certified  limited 
combustible  cable  or  to  request  a  free  CD,  log  on  to  teflon.com/cablingmaterials  or  call  1-800-207-0756. 
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Blocks  Everything  but  Business. 


SonicWALL's  Gateway  Anti-Virus/Intrusion  Prevention  Service— 
the  answer  to  your  network's  most  intrusive  Internet  security  threats. 


Think  you're  protected  from  the  persistent  invasion  of  application  exploits,  worms,  Trojans,  and  malicious  traffic?  Think  again 


The  PRO  and  TZ  Series  security  appliances  from  SonicWALL®  provide  the  most  comprehensive  gateway  anti-virus  and  intrusion 
prevention  available,  with  the  ability  to  handle  unlimited  file  sizes  and  virtually  hundreds  of  thousands  of  concurrent  downloads — 
even  while  running  other  security,  mobility,  and  productivity  services.  The  SonicWALL  PRO  and  TZ  Series  offer  unmatched  protection 
from  application  worms,  blended  threats,  and  exploits,  including  those  propagated  through  instant  messaging  and  peer-to-peer 
applications.  These  powerful  integrated  security  appliances  include  Deep  Packet  Inspection  with  over  1800  signatures  in  a  dynamically 
updated  database.  Tenacious  attacks  on  your  network  are  inevitable,  but  with  Gateway  Anti-Virus/Intrusion  Prevention  Service, 
content  filtering,  desktop-enforced  anti-virus,  and  IPSec  VPN,  the  SonicWALL  PRO  and  TZ  Series  security  appliances  relentlessly 
combat  threats  and  uncompromisingly  boost  your  business  productivity. 


To  learn  more  about  SonicWALL's  high-performance  PRO  and  TZ  Series  products  with  Gateway  Anti-Virus/Intrusion  Prevention 
Service  the  mandatory  element  of  network  security,  visit  www.sonicwall.com/home/gav.asp  or  call  +1.888.557.6642. 
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A  AT&T’s  Dorman  offers  Darwinian  take  on  survival 


Perhaps  nowhere  is  the  decline  of  AT&T  more 
visible  than  its  payroll:  A  decade  ago  the  com¬ 
pany  employed  more  than  300,000  —  by  year- 
end  it'll  be  about  49, 000.  Just  five  years  ago 
AT&T  controlled  cable,  wireless  and  traditional 
telephone  businesses  aimed  at  consumers  and 
enterprise  customers.  Now  its  core  business  is 
limited  to  the  latter.  AT&T  remains  formidable, 
with  $30  billion  in  revenue  last  year,  but  specula¬ 
tion  about  its  future  revolves  more  around  acqui¬ 
sition  than  any  return  to  the  glory  days.  AT&T 
CEO  and  Chairman  David  Dorman  recently 
spoke  with  Network  World  Senior  Editor  Denise 
Pappalardo  and  Associate  News  Editor  Paul 
McNamara  about  the  company's  enterprise  ser¬ 
vices  unit,  pricing  pressures  and  suwival  in  an 
ever-difficult  telecom  market. 

How  do  you  expect  to  find  growth  in  business  services? 

When  you’re  growing  volumes  but  your  unit  prices 
are  declining,  it’s  pretty  tough  to 
actually  get  top-line  change. . .  .We 
have  new  services  and  products 
that  this  year  will  produce  over  $1 
billion  in  new  revenue.The  number 
of  telecom  suppliers  out  there 
today  will  not  go  on  forever.  We 
don’t  think  telecom  is  like  the  air¬ 
line  industry  where  zombie  carriers 
keep  coming  back.Growth  is  an 
overall  industry  question  that’s  not 
unique  to  AT&T.  But  we  have  to 
combat  it  not  just  by  sticking  with  what  we  had 
before  but  also  by  venturing  into  new  areas. 

What  do  you  see  as  the  most  promising  of  those  new 
services? 

Managed  services  and  the  IP  VPN  areas  hold  the 
most  promise.  We  are  doing  things  where  we  have 
substantial  non-price  differentiation  benefits  over 
our  competitors.  We  have  more  points  of  presence, 
better  security  features,  more  and  deep  service-level 
agreements. 

You've  said  AT&T  will  not  be  beaten  on  price  for  business 
services.  How  do  you  balance  that  commitment  with  the 
need  to  grow  revenue? 

The  winner  of  a  price  war  of  this  kind  is  not  the  last 
man  standing  but  the  last  man  profitable.  We  were  not 
going  to  lead  prices  down,  but  we  were  not  going  to 
let  competitors  who  were  in  more  desperate  situa¬ 
tions  simply  use  price  to  win  and  think  that  was  a  sur- 
vivable  strategy . . .  We  have  a  portfolio  that  has  highly 
profitable  services  as  well  as  new  evolving  services. 
We  think  pricing  in  the  industry  has  reached  a  point 
where  the  replacement  cost  of  the  network  these  ser¬ 
vices  ride  on  is  so  high,  no  one  is  going  to  invest 
more  money  to  sell  services  at  these  prices.  And  only 
the  largest-scale  players  can  make  money 

Who  are  AT&Ts  prime  competitors?  Are  cable  companies 
and  local  exchange  carriers  on  the  same  playing  field  with 
interexchange  carriers? 


When  we  look  at  the  enterprise  services  market  and 
the  nearest  competitors  we  have  on  a  revenue  basis, 
they  are  MCI,  Sprint  and  Qwest.  In  MCI’s  case  they 
have  their  hands  full  managing  post-bankruptcy,  and 
we  feel  like  we  are  competing  effectively  with  them. 
Sprint,  by  its  own  choice,  has  emphasized  its  wireless 
business  and  allocated  much  more  of  its  investment 
to  wireless  and  almost  nothing  to  its  core  long-dis¬ 
tance  business.  Qwest  is  in  a  pretty  different  space  as 
far  as  its  financial  position. 

Over  time  we  will  certainly  see  the  Bells  show  up 
more.  But  you  have  to  make  a  serious  commitment.  If 
you  want  to  take  market  share  in  the  large-customer 
sector  you  have  to  offer  the  customer  a  reason  to 
switch.There  has  to  be  an  economic  incentive,  which 
means  you  have  to  give  them  an  even  lower  price 
than  guys  like  us  today,  which  means  you’re  going  to 
lose  money  Then  you  have  to  make  an  upfront  invest¬ 
ment  in  systems,  people  and  products,  and  reach 
beyond  your  region. 

What's  your  pitch  to  companies  when  tiding  to  give  them  a 
reason  to  switch  to  AT&T? 


We  think  we  are  offering  competitive  prices,  finan¬ 
cial  stability  and  strength,  and  the  broadest  product 
array  in  the  industry  There  is  a  lot  to  like  about  doing 
business  with  AT&T  because  you  can  sleep  well  at 
night.  We  are  not  in  a  position  where  we  are  charging 
a  massive  premium  for  that.  We  are  saying  we’ll  give 
you  the  best  service,  great  SLAs,  consistent  perfor¬ 
mance  and  you  know  we’re  going  to  be  here. 

AT&T  is  not  charging  a  premium?  Historically  you've  been 
known  for  doing  just  that 

I  said  we’re  not  charging  a  significant  premium.  On 
a  historical  basis,  the  fact  that  AT&T  did  charge  a  pre¬ 
mium  is  more  true  than  it  is  today  We  are  clearly  com¬ 
petitive  in  pricing. 

There  has  been  rampant  talk  about  consolidation  in  the 
industry.  What’s  your  take? 

I  don’t  think  anyone  should  be  running  their  busi¬ 
ness  with  the  idea  that  they  want  to  be  a  target  for 
acquisition.  Our  attitude  is  we  know  we  have  a  clear 
focus  now  on  what  our  mission  is,  which  is  serving 
businesses’  telecommunications  needs.  We  have  the 
best  franchise  of  business  communications  services 
in  the  world.  We  are  the  most  profitable,  we’re  a  $30 
billion  company,  and  we’re  a  leader  globally  and 
domestically  When  you  compare  us  to  AT&T  of  five 
years  ago  with  a  $20  billion-plus  consumer  business, 
cable  companies,  wireless  companies,  we’re  clearly 
not  that  company  anymore.  But  at  the  same  time  we 
have  the  notion  that  a  business  franchise  like  ours  is 


not  just  going  to  disappear. 

How  is  your  move  toward  consumer  VoIP  services  going  to 
play  out? 

We  have  a  profound  belief  that  the  voice  applica¬ 
tion  is  moving  from  being  embedded  in  a  local  net¬ 
work  infrastructure  to  being  a  services-layer  appli¬ 
cation  just  like  e-mail,  search  or  photo  exchange  or 
a  dozen  other  things  you  may  do  on  Yahoo.  Voice  is 
going  to  be  more  complex  because  it  is  a  peer-to- 
peer  service  by  definition  and  the  human  voice  has 
to  be  encapsulated  and  delivered  in  such  a  way 
that  it’s  coherent.  It’s  not  predictable  so  you  have  to 
have  an  [Multi-protocol  Label  Switching] ,  QoS  net¬ 
work  to  manage  it;  otherwise  you  cannot  control 
the  outcome. 

We  have  25  million  consumer  customers.  My  view  is 
we’re  successful  if  we  convert  some  number  of  those. 
It’s  not  going  to  be  the  80-million-customer  base  we 
had  in  1997,  but  having  several  million  consumer 
VoIP  customers  can  be  a  good  business  for  us. 

Did  regulators  force  you  out  of  the  traditional  voice 
business? 

Yes. We  had  acquired  6  million  cus¬ 
tomers.  We  actually  acquired  10  million 
and  the  Bells  took  back  4  million.  It  was 
a  fierce  battle. We  had  6  million  cus¬ 
tomers  using  our  service  through  the 
Bells.  Congress  wanted  to  bring  compe¬ 
tition  to  the  local  telephone  business 
when  it  drafted  the  Telecom  Act  of 
1996.  It’s  hard  to  argue  that  we  didn’t  do 
that  because  the  Bells,  before  we 
showed  up,  did  not  offer  bundles,  didn’t 
offer  packages,  didn’t  do  win-backs,  didn’t  send  peo¬ 
ple  checks.  We  created  a  lot  of  competition  in 
places  like  New  York,  Michigan  and  California.  Now 
some  of  those  promotions  are  expiring,  and  prices 
are  going  up. There’s  a  consequence. 

If  you  were  FCC  chairman  what  would  you  do  differently? 

I  would  fix  intercarrier  compensation  across  the 
long-distance,  [competitive  local  exchange  carrier] , 
ISP  wireless  and  VoIP  provider  sectors.  Each  of  those 
users  of  the  local  network  pays  a  different  rate.  What’s 
the  logic  for  that?  And  is  that  sustainable?  In  the  days 
when  AT&T  was  first  broken  up  and  we  were  the  only 
guys  paying  the  Bells,  it  was  a  transfer  of  wealth  from 
AT&T  to  the  Bells  for  the  purposes  of  keeping  the 
Bells’  investments  going  to  the  local  network.  What’s 
the  logic  for  a  dial-up  ISP  paying  9  cents  per  hour 
when  I’m  paying  9  cents  per  minute  in  North  Dakota 
to  use  exactly  the  same  facilities? 

Do  you  regret  that  AT&T  sold  off  its  wireless  division? 

1  don’t  think  regret  is  the  right  way  to  look  at  it.  It 
was  clear  if  we  didn’t  do  something  about  the  total 
debt  level,  we  were  going  to  face  a  serious  set  of  cir¬ 
cumstances.  All  you  have  to  do  is  look  around  to 
know  what  those  were. You  have  to  be  able  to  pay 
back  your  debt, and  we  had  $5  billion  a  year  in  inter¬ 
est  charges.  We  took  the  tough  medicine,  which  was 
selling  assets.  Strategically  I  would  love  to  have  that 
company  under  the  AT&T  name  and  portfolio,  but  we 
did  what  we  had  to  do.  ■ 
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utomate  change  mgmt 

Change  is  hard 

Change  and  configuration  management  CCM  technologies  present  hurdles. 


Challenge 

To  effectively  manage  changes  made  to 
systems  and  devices,  IT  managers  must 
have  a  complete  inventory  of  IT  assets 
and  configurations. 

Maintaining  a  large  configuration 
management  database  will  become 
unwieldy  and  data  stored  there  could 
become  out  of  date. 

Given  the  volume  and  variety  of  devices, 
making  sense  of  the  configuration  data 
and  how  it  relates  to  network  and 
application  performance  and  availability 
will  be  difficult. 

To  relate  application  or  network 
problems  to  configuration,  users  will 
have  to  integrate  their  CCM  management 
tools  with  service  desk  software. 


Strategy 

Companies  such  as  BMC,  Relicore  and  mValent 
offer  products  that  perform  an  auto-discovery 
of  all  IT  assets,  collect  configuration  data  and 
store  it  in  a  central  repository. 

Products  such  as  HP  OpenView  Automation 
Manager  can  detect  changes  and  automatically 
update  the  configuration  database  and  take 
action  based  on  policies,  HP  says. 

Network  managers  might  have  to  maintain 
separate  databases  for  various  IT  assets, 
create  models  of  the  ideal  state  for  IT 
components  and  determine  a  way  to  normalize 
the  data  so  it  can  be  correlated. 

Process  frameworks  such  as  the  Information 
Technology  Infrastructure  Library  provide 
guidelines  of  how  to  incorporate  CCM 
technologies  into  an  overall  IT  service 
management  strategy. 


Vendors 

■  BY  DENISE  DUBIE 

Management  heavyweights  are 
tackling  customer  IT  service  man¬ 
agement  concerns  with  product 
advances  that  could  deliver  on 
the  promise  of  intelligent  and 
automated  data  centers. 

BMC  Software  and  HP  are  tout¬ 
ing  new  products  they  say  will 
help  network  managers  take  in¬ 
ventory  of  IT  assets,  maintain  up- 
to-date  configuration  databases 
and  automatically  track  changes 
that  could  affect  service  levels. 

BMC  this  week  is  scheduled  to 
unveil  IT  Discovery  Suite,  which 
includes  software  gained  through 
its  acquisition  of  Marimba.  HP  last 
week  introduced  OpenView 
Automation  Manager,  incorporat¬ 
ing  technology  acquired  from 
Consera  and  Novadigm.  Auto¬ 
mation  Manager  lets  network 
managers  build  models  for  IT 
components  and  automatically 
maintain  them,  HP  says. 

The  new  products  are  expected 
to  help  customers  cut  costs 
through  automation,  remain  com¬ 
pliant  with  regulatory  require¬ 
ments  and  keep  distributed  IT 
components  working  toward  the 
goal  of  supporting  business-criti¬ 
cal  applications. 

Dubbed  change  and  configura¬ 
tion  management  (CCM),  such 
software’s  purpose  is  twofold.  On 
the  configuration  side,  it  identi¬ 
fies,  records,  tracks  and  reports  on 
IT  assets  such  as  applications, 
servers,  switches  and  firewalls.  On 
the  change  side,  the  software 
ensures  all  changes  made  to  IT 
components  “are  carried  out  in  a 
planned  and  authorized  manner^ 
analyst  Jean-Pierre  Garbani  says 
in  a  Forrester  Research  report. 

CCM  software  includes  a  cen¬ 
tralized  management  console 
and  database  repository,  which 
gets  updated  from  information 
gathered  across  a  network  either 
through  distributed  software 
agents  or  scheduled  scans  on 
servers  and  devices.  Ideally  the 
software  lets  customers  identify 
when  configuration  changes  will 
cause  a  service  disruption. 

“Without  being  able  to  measure 
the  impact  of  changes  made,  1 
can’t  be  sure  what  business  appli¬ 
cations  or  users  are  being  affect¬ 
ed  by  a  performance  problem, 
and  that’s  bad  customer  service,” 
says  Todd  Scharrad,  manager  of 
client  services  for  the  Greater 
Toronto  Airports  Authority  in 
Canada.  Scharrad  uses  a  combi¬ 
nation  of  FrontRange’s  Heat  ser¬ 


vice  management  software  and 
HP  OpenView  products  to  auto¬ 
mate  change  detection  and  inci¬ 
dent  management  across  6,000 
IT  assets.  He  plans  to  roll  out  a 
complete  configuration  process 
with  FrontRange  products  by 
July  because,  he  says,  CCM 
underpin  larger  IT  objectives  in 
his  department. 

“If  a  system  can  tell  me  what 
users  will  be  impacted  when  I 
bring  down  a  file  cluster  or  when 
a  switch  fails,  1  can  plan  my  IT 
tasks  around  what’s  critical  to  the 
business,”  he  says. 

Until  recently,  management 
giants  BMC,  Computer  Associates, 
HP  and  IBM  were  relatively  quiet 
on  the  CCM  front.Vendors  such  as 
Cendura,  Collation,  mValent,  Reli¬ 
core  and  Troux  made  the  first  in¬ 
roads  with  customers.  Many  of 
these  smaller  companies  gained 
traction  with  customers  despite 
the  down  economy  because 
their  software  helps  reduce  man¬ 
ual  labor  and  can  improve  IT  ser¬ 
vice  performance  by  fine-tuning 
applications. 

The  software  lets  IT  managers 
see  the  logical  and  physical  de¬ 
pendencies  among  applications, 
servers  and  devices,  experts  say 

“If  you  want  to  manage  an  IT 
service,  you  need  to  first  define 
what  it’s  made  up  of,  how  it’s  con¬ 
figured,”  says  Glenn  O’Donnell, 
program  director  at  Meta  Group. 
“CCM  provides  the  underlying 
nuts  and  bolts  you  need  to  define 


IT  services.” 

IT  service  management  vendor 
FrontRange  in  the  next  few  weeks 
is  scheduled  to  release  Heat  ITSM 
5.0,  featuring  new  software  add¬ 
ons  that  help  customers  incorpo¬ 
rate  CCM  processes  into  their  ser¬ 
vice  management  systems. 

Kurt  Hansel,  senior  technical 
officer  at  JP  Morgan  in  Lowell, 
Mass.,  uses  Relicore’s  Clarity  4.0 
CCM  software,  which  is  sched¬ 
uled  to  be  released  this  week. 

Clarity  tracks  the  financial  firm’s 
online  platform,  which  supports 
real-time  cash  transactions,  so 
network  availability  is  critical. 
Hansel  says  by  quickly  identify¬ 
ing  where  in  his  network  changes 
have  been  made,  the  software 
helps  him  speed  mean  time  to 
repair  for  network  and  applica¬ 
tion  problems. 

“In  the  past,  I’d  have  to  log  on 
manually  to  multiple  servers  and 
try  to  determine  what  was  out  of 
whack,”  he  says. 

Regulatory  compliance  con¬ 
cerns  also  have  drawn  cus¬ 
tomers  to  products  that  docu¬ 
ment  actions  taken  on  critical 
network  devices.  Network  device 
CCM  vendors  such  as  AlterPoint, 
Dorado,  Intelliden  and  Voyence 
attracted  customers  by  automat¬ 
ing  data  collection  across  multi¬ 
vendor  devices  ranging  from 
switches  and  routers  to  security 
devices  such  as  firewalls.  The 
products  would  ensure  networks 
were  locked  down  with  secure 


configurations  and  keep  tabs  on 
those  accessing  the  devices. 

While  automating  tedious  tasks 
and  documenting  accountability 
around  compliance  regulations 
are  noted  as  key  drivers  for  cus¬ 
tomer  interest  in  CCM,  for  the  big 
four  management  vendors  the 
technology  is  a  critical  step  in 
reaching  their  larger  automated 
data  center  goals. 

“CCM  used  to  be  something 
that  should  be  done,  but  now  it 
must  be  done  and  it  will  be  core 
to  any  automated  management 
product,”  says  Judith  Hurwitz, 
president  of  research  firm  Hur¬ 
witz  &  Associates. 

In  HP’s  case, OpenView  Automa¬ 
tion  Manager  can  react  to  “busi¬ 
ness  triggers,”  such  as  a  bottle¬ 
neck  in  a  fund  transfer  transac¬ 
tion,  by  kicking  off  a  pre-defined 
action  based  on  service-level 
agreements.  In  this  case,  the  soft¬ 
ware  would  compare  the  actual 
transaction  against  the  model 
and,  based  on  rules  in  the  soft¬ 
ware,  might  allocate  a  new  appli¬ 
cation  server  to  ensure  the  trans¬ 
action  is  performed  in  a  specified 
amount  of  time. 

Enhancing  software  with  the 
intelligence  to  respond  to  busi¬ 
ness  demand  is  part  of  HP’s  goal 
with  its  Adaptive  Enterprise  prod¬ 
uct  road  map.  For  its  part,  BMC 
says  its  IT  Discovery  Suite  is  one 
element  underpinning  its  larger 
Business  Service  management 
strategy.  ■ 
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DB2  DOESN’T  LOCK  YOU  IN. 

DB2  is  middleware,  but  it  is  anything  but  middle-of-the-road. 
In  fact,  DB2  is  part  of  an  innovative  family  of  information 
management  products  that  can  integrate  and  actually  add 
insight  to  your  data.  That’s  big. 

DB2  is  also  the  leading  database  built  on  and  optimized  for 
Linux"  UNIX*  and  Windows?  built  to  take  full  advantage  of 
your  existing  heterogeneous  and  open  environments,  and 
built  to  enable  true  grid  computing. 

Plus,  there’s  no  constricting  contract. 

DB2,  like  other  IBM  database  engine  products  such  as 
Informix*  and  Cioudscaper  is  also  middleware  with  an  eye 
on  your  resources.  All  of  them.  An  ITG  study  showed  overall 
costs  for  Oracle  Database  are  up  to  four  times  higher  than 
DB21  A  Solitaire  study  found  that,  on  average,  Oracle 


Database  required  25%  more  time  to  manage  than  DB2? 
And  the  Transaction  Processing  Performance  Council 
showed  DB2  as  the  overall  price/performance  leader  for 
TPC-C  on  Linux,  UNIX  and  Windows.  Ahead  of  both  Oracle 
Database  and  Microsoft*  SQL  Server? 

Then  there’s  this:  Oracle  will  drop  the  current  level  of  support 
for  Oracle  Database  8i  at  the  end  of  2004.  Meaning  limited 
support,  higher  cost  or  a  complete  migration  to  current 
versions.  Fortunately,  IBM  offers  ongoing,  around-the-clock 
service  and  support  for  DB2. 

Why  not  move  up  to  middleware  that  makes  sense?  Through 
the  end  of  the  year,  you  can  get  IBM  DB2  Universal  Database 
or  Informix  by  taking  advantage  of  our  extremely  compelling 
trade-up  promotion. 

Visit  ibm.com/db2/swap  today  to  find  out  if  you  qualify. 


DEMAND  BUSINESS 


IBM,  the  IBM  logo.  DB2.  Informix,  Cloudscape  and  the  On  Demand  logo  are  trademarks  or  registered  trademarks  of  International  Business  Machines  Corporation  in  the  United 
States  and  other  countries.  Linux  is  a  registered  trademark  of  Linus  Torvalds.  Microsoft  and  Windows  are  registered  trademarks  of  Microsoft  Corporation  in  the  United  States  and  or 
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service  marks  of  others.  ©2004  IBM  Corporation.  All  rights  reserved.  '“IBM  Solutions  for  PeopleSoft  deployment  in  Mid-sized  businesses  Quantifying  the  New  Cost/Benefit 
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available  10/25/04,  TPC  Benchmark,  TPC-C  and  tpmC  are  trademarks  of  the  Transaction  Processing  Performance  Council.  For  further  TPC-related  information,  please  visit  www.tpc.org 
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Start-up  readies 
server  mgmt  pack 

■  BY  ANN  BEDNARZ 

The  start-up  founded  by  former  BEA  Systems  chief  executive  Bill 
Coleman  and  a  dream  team  assembled  from  Sun,  Microsoft  and  Oracle 
executives  is  expected  this  week  to  unveil  its  first  product:  software 
that’s  designed  to  let  users  manage  multiple  Linux  and  Windows 
servers  as  if  they  were  a  single  system. 

The  company  Cassatt,  will  roll  out  Collage, a  package  that  tackles  serv¬ 
er  management,  provisioning  and  load  balancing.  With  its  Controller 
management  module  running  on  a  Linux  box,  Collage  works  by  dis¬ 
covering  and  inventorying  a  company’s  servers  and  then  organizing 
those  servers  in  tiers.  It  creates  a  set  of  operating  system  and  applica¬ 
tion  images,  and  deploys  these  images  to  the  servers. 

Two  IT  trends  make  the  timing  ripe  for  Collage  —  a  proliferation  of 
commodity  servers  and  storage  devices  in  the  data  center,  and  a  mi¬ 
gration  from  monolithic  applications  to  loosely  coupled  applications 
built  for  service-oriented  architectures,  Coleman  says. 

Cassatt  will  enter  a  crowded  market.  Industry  stalwarts  such  as  IBM, 


m  PROFILE: 


Cassatt 

Location: 

San  Jose 

Founded: 

September  2003 

Primary 

business: 

Software  for  virtualizing  distributed  servers. 

Key 

personnel: 

Bill  Coleman,  founder,  chairman  and  CEO 
(previously  co-founded  BEA);  Mark  Forman, 
executive  vice  president  of  worldwide  services; 
and  Rob  Gingell,  executive  vice  president  and  CTO. 

Funding: 

Unspecified,  but  reportedly  up  to  $50  million  from 
primary  backer  Warburg  Pincus. 

Origin  of 
company: 

Named  for  late-19th  century  Impressionist  painter 
Mary  Cassatt. 

HP  and  Sun,  and  specialists  including  BladeLogic,  Egenera  and 
Opsware,  all  are  working  on  tools  to  more  easily  manage  multiple 
servers  and  various  platforms. 

What  Collage  provides  is  a  scalable  way  to  manage  all  these  re¬ 
sources  without  adding  more  complexity  Coleman  says. 

Cassatt  came  out  of  Unlimited  Scale,  a  vendor  that  made  Linux-based 
server-clustering  technology  Warburg  Pincus  asked  Coleman  to  exam¬ 
ine  the  vendor’s  technology  then  the  venture  capital  firm  bought 
Unlimited  Scale,  and  Coleman  took  the  helm  of  the  new  company 

Coleman’s  executive  team  hailed  from  Cray  Research,  Microsoft, 
Novell,  Oracle  and  Sun.  Coleman  and  company  convinced  19  Sun 
engineers  working  on  a  remote  distributed  management  console  for 
Sun’s  N1  initiative  to  defect  from  Sun  as  a  team.  Another  big  hire  was 
the  federal  governments  former  e-government  czar,  Mark  Forman,  who 
is  Cassatt’s  executive  vice  president  of  services. 

Usability  was  an  important  design  consideration  for  Collage,  says 
Rich  Green,  executive  vice  president  of  product  development  at  Cas¬ 
satt  and  a  former  vice  president  of  developer  platforms  at  Sun.  Collage 
doesn’t  require  changes  to  a  company’s  IT  infrastructure  —  applica¬ 
tions,  operating  systems,  system  management  software,  hardware  and 
networks  can  remain  intact,  Green  says. 

That  same  technology  benefits  Collage’s  provisioning  prowess, 
speeding  the  time  it  takes  to  add  a  new  machine,  re-provision  an  ex¬ 
isting  machine,  or  detect  and  replace  a  failed  machine,  Green  says. 

Another  important  element  is  Cassatt’s  database  system,  which  uses 
virtualization  technology  to  keep  data  stored  separately  from  applica¬ 
tions  yet  accessed  as  if  it  were  local. 

Pricing  starts  at  $25,000  for  the  Collage  Controller  management  soft¬ 
ware,  which  administers  and  distributes  software  to  each  server,  plus 
$1 ,500  per  managed  server.  ■ 


Municipal 

continued  from  page  1  Wi-Fi  city 


A  diverse  collection  of  cities  and  towns  are 
experimenting  with  their  own  802.11-based  wireless 
LAN  services,  often  to  provide  residents  and  businesses 
broadband  access  to  the  Internet. 

Lompoc,  Calif,  (pop.  40,000):  Plans  to  offer  fee-based  wireless 
broadband  service  to  residents  in  2005. 

Grand  Haven,  Mich.  (pop.  11,000):  Offers  WLAN-based  Internet 
access  over  a  6-square-mile  area;  currently  beta-testing  WLAN 
phones. 

Rio  Rancho,  N.M.  (pop.  52,000):  Relaunched  a  citywideWLAN 
project  to  cover  103  square  miles  via  a  contract  with  Ottowa 
Wireless. 

Granbury,  Texas  (pop.  6,000):  Deploying  a  Wi-Fi  network  via 
local  ISP  Frontier  Broadband,  covering  roughly  10  square  miles; 
mixed  use  network  for  public  access  and  municipal  applications. 

Washington,  La.  (pop.  1,000):  Installing  wireless  mesh  over  2 
square  miles  for  police  use,  including  two  wireless  IP  cameras, 
and  general  Internet  access;  security  via  digital  certificates. 

Los  Angeles  (pop. 3.6  million):  Mayor  Jim  Hahn  announced 
creation  of  a  special  panel  to  report  on  feasibility  of  a  citywide 
WLAN  to  extend  wireless  Internet  access  to  all  residents  panel 
to  report  by  April. 

SOURCE:  MUNIWIRELESS.COM 


what  effect  new  Wi-Fi  net¬ 
works  could  have  on  their 
organizations. 

“This  [kind  of  network]  would 
be  of  significant  value  to  our 
[legal]  advocates  that  do  out¬ 
reach  work  around  the  city  at 
community  sites  and  people’s 
homes,”  says  John  Greiner,  CTO 
for  Legal  Services  of  New  York 
City  “If  we  had  pervasive  WLANs 
across  the  five  boroughs,  we 
could  much  more  cost  effectively 
mobilize  our  staff.” 

Greiner  says  the  organization 
has  been  experimenting  with  cel¬ 
lular  data  services  but  he  finds 
them  too  slow,  too  pricey  with 
spotty  coverage.  All  these  limita¬ 
tions  potentially  could  be  over¬ 
come  with  a  city  WLAN. 

“My  bet  would  be  that  pervasive 
WLAN  will  culture  all  sorts  of  in¬ 
novative  technology  applications 
and  economic  development,  sim¬ 
ilar  to  the  Internet,”  he  says. 

The  organization’s  corporate 
network  probably  wouldn’t 
change  much,  he  says,  unless  the 
city  WLAN  was  able  to  offer  busi¬ 
ness-class  service-level  agree¬ 
ments  and  QoS. 

Northern  Illinois  University  has 
its  own  WLAN,  and  so  far 
the  neighboring  city  of  DeKalb 
doesn’t  have  plans  for  a  citywide 
network.  But  Walter  Czerniak,  the 
school’s  assistant  vice  president 
for  IT,  says,  “A  city  network  would 
provide  access  for  our  students 
who  live  off-campus.  In  that  light, 
we  would  support  [such  a  net]  in 
any  way  we  could.” 

But  potential  problems  include 
unpredictable  performance 
based  on  user  densities,  unsolv- 
able  interference  issues  in  the 
increasingly  crowded  2.4-GHz 
band  and  a  greater  vulnerability 
of  WLAN  users  to  viruses  or  other 
attacks,  which  then  could  leak 
into  corporate  networks  when 
employees  log  on. 

“802.11b/g/a  all  ride  over  unli¬ 
censed  spectrum,  with  no  rules 
on  what  happens  when  you  cre¬ 
ate  channel  interference  for 
neighboring  access  points,”  says 
John  Halamka,CIO  of  CareGroup 
Healthcare  Systems  in  Boston.'As 
long  as  your  [access  point] 
power  settings  are  within  FCC 
guidelines,  it’s  a  Wild  West  show. 


■  Columnist  Scott 


Bradner  opines  a  bit  sar¬ 
castic  after  reading  law 
passed  by  Philadelphia 
lawmakers.  PAGE  33. 


There  will  be  plenty  of  opportu¬ 
nity  for  interference.” 

Outdoor  radios  from  vendors 
such  as  Strix  Systems  use  power 
levels  from  100  to  800  milliwatts, 
two  to  16  times  as  much  as  is 
used  by  indoor  WLAN  access 
points. 

The  chances  of  such  powerful 
radios  being  set  up  outside  of  cor¬ 
porate  offices  are  growing.  Even 
though  Verizon  essentially  got  its 
way  with  a  bill  signed  last  week 
by  Pennsylvania  Gov.  Edward 
Rendell  (carriers  argue  that 
municipalities  creating  nets  enjoy 
unfair  advantages  in  the  form  of 
taxpayer  subsidies  and  the  ability 
to  issue  bonds),  Philadelphia  was 
granted  permission  to  carry  on 
with  its  network  plan. 

These  public  networks  are  tak¬ 
ing  form  in  all  kinds  of  communi¬ 
ties  (see  graphic),  typically  using 
802.11-based  radios  in  the  unli¬ 
censed  2.4-  and  5-GHz  spectrum 
bands.  A  flock  of  companies, 
ranging  from  giants  such  as  Nor¬ 
tel  to  start-ups  such  as  BelAir, 
Strix,  Tropos  and  Vivato,  offers 
wireless  mesh  radios  designed 
for  what  they  see  as  a  market  on 
the  verge  of  exploding.  “We’re 
watching  this  whole  develop¬ 
ment  closely?’  says  Doug 
Huemme,  assistant  vice  president 
of  marketing  at  Strix. 

Generally  these  outdoor  radio 
nodes,  mounted  on  utility  poles 
or  public  buildings,  include  one 
or  more  radios  that  work  like  a 
traditional  access  point  to  con¬ 
nect  to  clients.  But  they  also  in¬ 
clude  one  or  more  radios  with 
special  routing  software  that  are 


dedicated  solely  to  high-band¬ 
width  data  backhaul. 

The  result  is  that  nodes  can  be 
set  up  quickly  most  of  them  with¬ 
out  any  backhaul  cabling.  Data 
traffic  hops  from  one  node  to 
another,  until  it  finally  reaches  a 
wired  connection  to  a  telco  or 
service  provider. 

Not  all  municipal  WLANs  are  in¬ 
tended  for  public  access,  or  to  re¬ 
place  or  compete  with  broad¬ 
band  offerings  from  cable  com¬ 
panies  and  service  providers. 
Many  are  only  for  municipal  em¬ 
ployees:  police,  firefighters,  build¬ 
ing  inspectors,  meter  readers. 

But  even  in  these  cases,  some 
officials  are  looking  to  extend 
them  for  residential  and  business 
Internet  access.  The  city  of  Her- 
mosa  Beach,  Calif.,  launched  its 
Strix-based  network  first  for  In¬ 
ternet  access  and  then  began 
adding  municipal  applications. 
Another  Strix  customer,  Jersey 
Village,  Texas,  took  the  opposite 
approach:  It  installed  the  network 
first  for  employees  and  now  plans 
to  extend  it  to  citizens. 

Either  approach  is  fine  with 
Doug  Chick,  a  network  manager 
in  the  Orlando  area  for  a  health¬ 
care  company  he  asked  not  to 
name.  He  also  runs  thenet- 
workadministrator.com,  a  Web 
site  for  computer  professionals. 
“Working  within  and  managing 
an  IT  department  is  a  24/7  job, 
and  1  need  24/7  access  to  do  my 
job,”  he  says.B 

Get  more  information  online. 
DocFinder:  4946 
www.nwfusion.com 
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Consider  the  dots  connected.  From  one  coast  to  the  other,  Transportation 
Insurance  Brokers  are  serving  clients  more  securely.  Sharing  data  more  quickly. 
Communicating  more  seamlessly.  And  doing  it  all  for  almost  $2,000  less  a  month, 
thanks  to  an  IP-VPN  solution  we  designed,  delivered  and  now  manage.  And  the 
strong,  reliable  backbone  of  the  SBC  network.  Find  out  more  about  how  we’re 
helping  TIB  connect  the  dots  at  sbc.com/dots.  GOING  BEYOND  THE  CALL* 

,  the  SBC  logo  and  GOiNG  BEYOND  THE  CALL  are  registered  trademarks  of  SBC  teiedge  Ventures,  LP.  and/or  its  affiliates.  ©2004  SBC  Knowledge  Ventures,  L.P.  All  rights  reserved. 
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Closet  upgrades 

New  Cisco  Catalyst  switch  modules  push  more  features  to  chassis  in  wiring  closets. 
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Q  New  switch  fabric  modules  for  the 
Catalyst  6500  and  4500  have 
integrated  10G  Ethernet  ports  for 
uplinking  directly  to  a  core  switch. 
This  architecture  frees  up  slots  on 
the  switches  for  more  end-user  port 
connections,  Cisco  says. 


©  New  Catalyst  6500  modules  provide 
10/100/1000  and  PoE,  while  letting 
users  detect  bad  network  cables. 


©  The  new  7971G-GE  IP  phone  lets  PCs 
link  to  the  LAN  at  Gigabit  speed 
through  the  phone. 


Cisco 

continued  from  page  1 

continue  to  decline,  although 
not  as  much  as  some  would  like. 

“The  number  of  standard  Giga¬ 
bit  [desktop]  interfaces  pre¬ 
sents  a  challenge  for  those  of  us 
providing  the  infrastructure,” 
says  George  Kohrman,  assistant 
director  of  network  infrastruc¬ 
ture  at  Western  Michigan  Univer¬ 
sity  at  Kalamazoo.  “Part  of  the 
problem  is  the  expense  of  10G  is 
dropping  but  is  still  kind  of 
expensive.  None  of  the  vendors 
really  have  a  good  inexpensive 
solution.” 

Among  the  key  10G  products 
Cisco  unveiled  last  week  were 
Supervisor  Engines  with  integrat¬ 
ed  10G  Ethernet  interfaces  and 
uplinks  for  the  Catalyst  6500  and 
4500  switches.  The  engines  let 
the  switches  aggregate  multiple 
1G  bit/sec  Ethernet  desktop  links 
and  drop  them  down  to  the  core 
Cisco  switch.  The  new  engines 
also  introduce  10G  support  over 
multimode  fiber,  which  is  a  more 
commonly  deployed  fiber  plant 
in  corporations  than  single¬ 
mode.  Multimode  was  used  in 
older  FDDI  and  Gigabit  Ethernet 
networks. 

The  Supervisor  Engine  32  for 
the  edge  6500  is  based  on  Cisco’s 
Supervisor  Engine  720  for  the 
core  6500.  It  includes  security 
features,  such  as  denial-of-ser- 
vice  mitigation,  usually  reserved 
for  the  core. 


“You  never  know  where  you’re 
going  to  get  hit  from,”  says  Cisco 
customer  Dean  Coyle,  network 
analyst  at  Central  DuPage  Health 
in  Winfield,  Ill. 

The  Supervisor  Engine  32  in¬ 
cludes  a  key  element  of  Cisco’s 
wireless  LAN  offerings  that  could 
presage  a  drop  in  the  entry  price 
of  a  Cisco  WLAN  network. 

Cisco’s  WLAN  offerings  now 
require  a  Catalyst  6500  with  the 
Supervisor  720  and  a  WLAN 
switching  module  (WLSM), 
notes  Joel  Conover,  an  analyst  at 
Current  Analysis. 

“Together  this  stuff  makes 
about  a  $50,000  package,  which 
is  the  cost  to  get  into  Cisco  wire¬ 
less  before  you  start  even  buy¬ 
ing”  access  points,  Conover  says. 

He  says  the  Supervisor  Engine 
32  embeds  code  that’s  required 
for  use  with  the  WLSM.  Cisco 
could  subsequently  add  code  to 
the  WLSM  to  support  the  Super¬ 
visor  Engine  32,  which  would 
drop  the  entry  point  into  Cisco 
WLANs  by  $10,000,  Conover 
says. 

“Most  of  the  other  [WLAN] 
solutions  in  the  market  top  out  at 
$8,000,”  he  says. 

With  the  Supervisor  Engine  32, 
Cisco  is  the  first  among  its  high- 
end  peers  —  3Com,  Alcatel, 
Extreme  Networks,  Foundry 
Networks  and  HP  —  to  build  10G 
ports  into  a  switch  fabric  mod¬ 
ule,  observers  note.  They  have 
approached  this  core-to-closet 
architecture  by  pushing  fixed- 


configuration  LAN  switches  with 
10G  uplinks  at  aggressive  prices. 

For  the  4500,  Cisco  rolled  out 
the  Layer  2/3/4  Supervisor  Engine 
V-10GE,  which  offers  dual  wire- 
speed  10G  Ethernet  ports  or  four 
Gigabit  Ethernet  ports.  This  con¬ 
figuration  is  designed  to  accom¬ 
modate  users  migrating  from  1G 
to  10G. 

Other  key  offerings  were 
switches  that  feature  standard 


and  non-standard  Power  over 
Ethernet  (PoE)  capabilities, 
which  juice  up  VoIP  and  WLANs. 
PoE  is  now  found  in  Cisco’s  6500, 
3750  and  3560  switches  for  the 
edge,  and  a  new  96-port  RJ-21 
LAN  access  module  for  the  6500. 

Cisco  has  increased  the  band¬ 
width  on  its  Catalyst  3750  and 
3560  PoE-enabled  switches  to  10/ 
100/1000M  bit/sec  (10/100/1000 
PoE  was  previously  available 
only  on  the  Catalyst  6500).  Cisco 
also  has  added  its  Time  Domain 
Reflectonomy  technology  —  for 
detecting  faults  in  network 
cables  —  into  its  10/100/  1000M 
bit/sec  PoE  modules  for  the 
Catalyst  6500. 

“  [Standards-based  PoE]  is  criti¬ 
cal  for  IP  telephony  and  access 
point  deployments,”  says  Matthew 
Valenzisi,  a  network  engineer  at 
North  Carolina  State  University  in 
Raleigh,  which  is  doing  both. 
“We’re  trying  to  install  one  hot 
spot  per  month.” 

Competing  PoE  switches  are 
offered  by  Dell,  Enterasys, 
Foundry  HP  and  Nortel.  Cisco  is 
the  only  one  offering  an  RJ-21 
product  that  supports  FbE. 

The  new  Catalyst  6500  blade 
lets  network  technicians  provide 
IEEE  802.3af-compliant  power  to 
96  end-user  Ethernet  ports  by 
connecting  to  a  network  patch 
panel  via  six  telco  connector 
cables  (containing  16  Ethernet 
connections  wrapped  together). 
These  cables  plug  into  a  patch 
panel  that  terminates  the  links 
across  96  RJ-45  ports. 

But  power  is  only  on  when 


applications  are  available.  To 
boost  the  uptime  of  these  en¬ 
hanced  switches,  Cisco  is  adding 
IOS  software  with  Layer  2  non¬ 
stop  forwarding  and  stateful 
switchover  (SSO)  to  the  Catalyst 
4500.  This  follows  the  release  in 
August  of  Layer  2  and  3  SSO  and 
a  non-stop  forwarding  IOS  ver¬ 
sion  for  the  Catalyst  6500. 

Without  SSO, “VoIP  calls  lose  or 
drop  their  connection,”  says 
Central  DuPage’s  Coyle.  “Drop¬ 
ped  connections  are  your  big¬ 
gest  enemy” 

Despite  the  breadth  of  Cisco’s 
LAN  barrage,  users  still  want 
more. 

“I  really  wish  Cisco  would  put  a 
few  more  things  in  [the  4500], 
like  an  IDS  blade,”  says  Bill 
Hamilton,  director  of  enterprise 
architecture  at  Maritz,  a  Missouri 
application  service  provider. 

All  products  are  available  now, 
with  the  exception  of  Supervisor 
32  with  the  dual  10G  Ethernet 
links.  That  is  slated  to  be  avail¬ 
able  in  February  2005. 

Catalyst  6500  products  range 
from  $5,000  to  $20,000.  The 
Supervisor  Engine  V-10GE  costs 
$20,000.  Prices  for  the  3750  and 
3560  switches  range  from  $4,800 
to  $15,500.  The  Gigabit  Ethernet 
phone  —  called  the  7971G-GE  — 
costs  $845. 

Senior  Editor  Phil  Hochmuth 
contributed  to  this  story. 

Get  more  information  online. 
DocFinder:  4947 
www.nwfusion.com 


HP,  Alcatel  rev  up  new  switches 


■  BY  PHIL  HOCHMUTH  AND  TIM  GREENE 

HP  this  week  is  expected  to  announce  its  strategy 
for  building  enterprise  LANs  with  emphasis  on 
strong  security  and  advanced  services  in  edge  de¬ 
vices  and  with  less  feature-laden  10G  Ethernet 
boxes  in  the  core. 

Analysts  say  this  Edge  Fabric  architecture  —  based 
on  technology  HP  acquired  from  Riverstone  Net¬ 
works  —  more  resembles  carrier  networks,  in  which 
big, “dumb”  boxes  in  the  core  move  packets  among 
edge  boxes,  where  services  are  delivered. This  coun¬ 
ters  some  traditional  enterprise  LAN  models,  in 
which  Layer  3  routing,  QoS  and  other  features  are 
supported  in  core  boxes.  Some  observers  say  the 
approach  could  give  corporate  customers  a  more 
cost-effective  and  secure  way  to  build  LANs. 

HP’s  ProCurve  networking  division  will  release  the 
Edge  Fabric  switches  in  the  second  quarter  of  2005. 
The  boxes  will  include  eight-  and  16-slot  chassis, 
with  dual-port  10G  and  16-port  Gigabit  line  cards 
available.  According  to  Mark  Thompson,  marketing 
manager  for  HP’s  ProCurve  group,  the  boxes  will 
cost  about  40%  to  50%  less  than  the  average  10G 
port  —  which  is  currently  about  $8,000.  The  lower 
cost  is  because  the  boxes  will  support  pared-down 
feature  sets  —  Layer  2A  switching  and  basic  routing 


protocols  —  and  are  not  intended  to  run  services 
such  as  WAN  access,  VPN  or  intrusion  detection,  or 
deep  packet  inspection. 

“We  aren’t  taking  the  Swiss-Army-knife  approach” 
on  the  Edge  Fabric  boxes,  Thompson  says,  referring 
to  Cisco’s  Catalyst  6500,  which  can  fill  many  roles. 

Over  the  past  two  years,  HP’s  ProCurve  group  has 
defined  its  intelligent  edge  strategy  with  wiring 
closet  switches  that  support  802.  IX  and  policy- 
based  user  authentication  (ProCurve’s  Identity 
Driven  Management  architecture),  wireless  LAN 
switches  and  management  software,  QoS  and  net¬ 
work  management  features.  In  2005,  HP  plans  to 
introduce  technology  in  ProCurve  switches,  letting 
them  limit  the  bandwidth  available  to  computers 
suspected  of  having  a  virus  or  worm. 

With  Edge  Fabric,  Thompson  says,  “the  three-tier 
model”  —  LAN  access,  distribution  and  core  layers 
—  “mutates  into  a  two-tier  framework,  where  you’ll 
have  edge  devices  and  interconnects  between 
those  devices.” 

By  focusing  on  passing  packets  in  the  LAN  core, 
Thompson  says  the  emphasis  is  on  availability 
which  is  where  the  Riverstone  technology  comes  in. 
Before  HP’s  acquisition  of  the  technology  Riverstone 

See  HP,  page  72 
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auction  that  enabled  those  not  in  the  room  to  bid  on 
items  in  near  real  time. 

Then  off  Noonan  went,  breaking  into  an 
almost  sing-song,  rapid-fire  number-calling 
technique  that  he  credits  to  his  experience 
during  college  as  the  lead  singer  for  a  local 
rock  band  called  The  Blowouts.“Now  I  just 
substitute  numbers  for  lyrics,”  he  says. 

“Whaddayasay-we-gotta-$200-bid  on  this 
Dell  PC  . . .  200, 200, 200,  c’mon-we-get-$250? 

We  got  $250. 250, 250,  we  got  $300.  $300,  $300, 
$300  that’s  it?  $300?  Going  once.Twice.All 
yours  in  the  front  rov^’ Noonan  barked. 

The  auction  featured  468  “lots”  of  items. 
Cisco  Catalyst  6500  routers,  attracting  offers  in 
the  thousands  of  dollars,  topped  the  bidding,  which 
lasted  four  hours.  Noonan  declined  to  talk  about  how 
much  money  any  particular  auction  brought  in  but 
noted  that  when  intellectual  property  is  included, 
auctions  can  make  “well  into  the  six-figure  range.”  His 
company  did  not  offer  Appian’s  intellectual  property. 
While  Noonan  doesn’t  keep  track  of  what  happens 
to  goods  sold,  he  says  he  likes  to  think  they  will  help 
new  entrepreneurs.  “Auctions  are  sexy  vehicles  that 
attract  a  lot  of  people,  people  who  want  to  be  part  of  the 
next  hot  start-up,”  he  says. 

Others  agree  with  that  assessment  —  particularly  in 
the  hotbed  of  start-ups  that  is  Massachusetts. 

“The  equipment  that  you  get  from  these  auctions  is  a 
great  way  for  a  new  company  to  jump-start  their  offices 
and  labs.  Given  all  the  start-ups  in  Massachusetts  over 
the  years,  I’m  sure  that  some  of  the  gear  —  lab  benches, 
etc. —  have  been  used  by  five  or  10  different  compa¬ 
nies,”  says  start-up  veteran  Chad  Dunn,  who  most  recent¬ 
ly  was  with  WaveSmith,  a  company  bought  by  Ciena  last 
year  for  $178  million. “No  question  that  these  auctions 
serve  an  important  function  Get  more  jnformatioil  #n|ine> 
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of  Appian, an  Acton,  Mass.,  maker  of 
Ethernet-over-SONET  gear. 

“I  classify  the  auctions  as  more  of  a 
rebirth  and  an  opportunity  for  other 
companies  to  grow;” says  Noonan, 
founder,  president  and  chief  auctioneer 
of  Advanced  Assets  Services,  a  10-year- 
old  Woburn,  Mass.,  outfit.Teople  who 
haven’t  seen  each  other  in  a  while  meet 
up  at  these  auctions,  and  I  have  heard  of  compa¬ 
nies  being  started  from  those  meetings.” 

Noonan  says  the  number  of  such  auctions  across 
the  country  has  leveled  off  to  about  three  or  four 
per  month  in  the  past  year  and  a  half,  whereas  a 
few  years  ago  you  could  find  one  almost  every  day 
Advanced  Asset  Services  operates  globally  with 
field  offices  in  Connecticut,  Utah  and  England.  The 
firm  has  recovered  more  than  $1  billion  in  equip¬ 
ment  costs  from  products  and  equipment  sales 
from  Cereva,AT&T  and  Bull,  to  name  a  few.  It  also 
has  handled  auctions  for  aerospace  and  manufac¬ 
turing  businesses,  the  firm’s  Web  site  says.  Noonan 
says  most  of  his  company’s  business  is  generated 
by  word-of-mouth  recommendations  and  keeping 
close  contact  with  the  venture  capital  community 

Appian,  which  raised  about  $80  million  of  venture  capi¬ 
tal  during  a  five-year  run  that  ended  in  January  outlasted 
many  of  its  optical  network  equipment  brethren  whose 
fortunes  peaked  and  then  crashed  along  with  much  of 
the  rest  of  the  telecom  industry  in  recent  years. 

The  Appian  auction  had  a  business-like  feel.  Former 
company  workers  were  nowhere  to  be  seen.  As  Noonan 
says, “the  human  element”  has  largely  been  removed  from 
companies  once  he  is  on  the  scene. 

Eighty  or  so  potential  buyers  milled  about  the  compa¬ 
ny’s  offices, sat  in  previously  used  chairs  and  nosed 


Among  the  items  up  for  sale  at  a 
recent  auction  of  Appian 
Communications'  assets. 


through  vacant  cubicles  that  in  some  cases  still  had  little 
personal  artifacts  —  such  as  the  obligatory  Dilbert  car¬ 
toon  —  on  the  walls.  On  the  floor,  Appian  Frisbees  inter¬ 
mingled  with  framed  industry  magazine  covers  from  2000 
touting  Appian  s  potential  success:  Americas  Network  Hot 
100,  Upside  Hot  100. 

Stepping  to  the  podium  against  a  backdrop  of  gloomy 
rainy  skies  northwest  of  Boston,  Noonan  went  over  the 
auction’s  ground  rules.  Among  other  things,  he  implored 
winning  bidders  for  computer  systems  to  delete  any  soft¬ 
ware  or  company  information  found  on  the  machines.  A 
sidekick,  meanwhile,  monitored  a  Webcast  version  of  the 


HP  adds  sharing  components  to  identity  platform 


■  BY  JOHN  FONTANA 

HP  last  week  added  a  new  piece 
to  its  identity  management  lineup 
that  is  designed  to  let  companies 
share  identity  information  across 
corporate  boundaries. 

HP  OpenView  Select  Federa¬ 
tion,  a  gateway  server  that  lets 
users  share  identities  with  busi¬ 
ness  partners  using  standards- 
based  protocols,  is  expected  to 
ship  early  next  year. 

The  company  is  licensing  the 
technology  from  Trustgenix, 
which  develops  so-called  identity 
federation  software.  Federation 
lets  user  credentials  validated  on 
one  partner  network  be  used  for 
access  to  services  on  another. 

HP’s  identity  management  line¬ 
up  includes  Select  Identity,  provi¬ 
sioning  software  that  it  acquired 
when  it  bought  Trulogica  in 
March,  and  Select  Access,  Web 
access  management  software  it 
acquired  from  Baltimore  Technol¬ 
ogies  last  year. 

Select  Federation  rounds  out 


Identity  platform 

HP  last  week  added  identity  federation  software  to  its 
identity  management  lineup. 


Software 

How  acquired 

Features 

Select 

Access 

Acquired  from 

Baltimore 

Technologies 

Web-based  single  sign-on; 
automated  network  and  resource 
discovery;  support  for  Security 
Assertion  Markup  Language. 

Select 

Identity 

AcquiredTrulogica 

Centralized  provisioning; 
integrated  workflow;  password 
management;  delegated 
administration. 

Select 

Federation 

Licensed  from 
Trustgenix 

Support  for  mulitple  federation 
protocols;  single  sign-on/single 
logout;  session  management; 
online  activation/provisioning; 
privilege  management. 

HP’s  identity  management  suite. 

“At  this  point  we  consider  our¬ 
selves  a  mainstream  identity  man¬ 
agement  suite  player  with  access 
management,  provisioning,  user 
management,  single  sign-on  and 
federation  capabilities,”  says  Sai 


Allavarpu,  director  of  product 
marketing  for  IT  service  manage¬ 
ment  and  identity  management. 

However,  analysts  say  the  com¬ 
pany  still  lacks  pieces. 

“They  need  a  metadirectory 
component  to  actually  round  out 


their  suite,”  says  Earl  Perkins,  an 
analyst  with  Meta  Group.  “With 
that  they  probably  have  all  the 
makings  of  a  full-service  offering.” 

Others  say  HP  is  missing  pieces 
such  as  password  synchronization. 

Competitors  include  IBM,  Micro¬ 
soft,  Novell,  Oracle  and  Sun. 

In  October,  IBM  formed  a  part¬ 
nership  with  Ping  Identity  and 
promised  to  recommend  to  IBM’s 
smaller  customers  Ping’s  Ping- 
Federate  server  so  they  can  inte¬ 
grate  with  larger  partners  that  use 
IBM’s  Tivoli  Federated  Identity 
Manager.  Last  year,  HP  and  Ping 
partnered  to  develop  SourcelD, 
which  is  open  source  identity  fed¬ 
eration  software. 

In  July  Oracle  acquired  Phaos, 
another  federation  software  pro¬ 
vider,  and  plans  to  add  those 
wares  to  its  Oracle  Identity  Man¬ 
agement  Solution. 

HP  plans  to  offer  Select  Federate 
in  two  versions.  The  Enterprise 
Edition  is  designed  for  corporate 
use.  A  Premium  Edition  is  for  tele¬ 
com,  mobile  and  business-to- 


consumer  usage. 

Select  Federation  includes  a  pri¬ 
vacy  manager  so  users  can  spec¬ 
ify  which  attributes  of  an  identity 
they  want  to  share.lt  also  supports 
multiple  protocols  and  multiple 
protocols  versions,  including  Sec¬ 
urity  Assertion  Markup  Language 
1 . 1  and  1 .0,  Liberty  Identity  Web 
Services  Framework,  Liberty  Iden¬ 
tity  Federation  Framework  1 . 1  and 
1.2,  Liberty  Enabled  Client  Proxy 
and  Liberty  Extended  Profiles. 
Trustgenix  plans  to  add  support 
for  WS-Federation,  a  protocol 
under  development  by  IBM  and 
Microsoft,  but  has  not  said  when 
that  will  happen. 

Select  Federation  integrates 
with  directories  that  support 
Lightweight  Directory  Access  Pro¬ 
tocol  and  is  Java-based  software 
that  will  run  on  HP-UX  and  Sun 
Solaris.  HP  is  developing  a  Linux 
version. 

The  Enterprise  Edition  costs 
$25,000  per  federated  applica¬ 
tion;  Premium  Edition  is  $50,000 
per  federated  application.  ■ 
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Number 
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IT  Racks 
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(36  installments) 

ISXCR1SY16K16P5 

1 

up  to  5kW 

S1 4,999* 

s499 

ISXT240MD6R 

6 

up  to  5kW 

$1 49,999* 

s4,999 

ISXT240MD11R 

11 

up  to  5kW 

$249,999* 

s7,999 

ISXT280MD40R 

40 

up  to  5kW 

$699,999* 

$21,999 

ISXT2800MD1Q0R 

100 

up  to  5kW 

$1 ,649,999* 

$50,999 

High  Density  Configuration  (shown  above) 

ISXT280HD8R 

8 

up  to  lOkW 

$399,999* 

$1 2,999 

All  multi-rack  configurations  feature: 

J  N+ I  power  and  cooling 
J  Secure,  self-contained  environment 
Peak  capacity  of  20kW per  rack 
y  Enhanced  service  package 
J  Integrated  management  software 


on  demand? 


High  density  upgrades  start  at  $1 0,999 
On-site  power  generation  options  start  at  $29,999 
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Infrastructure 

DATA  CENTERS  ON  DEMAND 

Highly  available  and  manageable, 
quick-to-install,  scalable  architecture 
that  easily  supports  both  standard- 
and  high-density  applications. 

-  Up  to  20kW  a  rack  for  any 
blade  server  application 

-  Unlimited  racks 

-  Ships  in  5  days** 

-  Installs  in  1  day** 

-  Optional  on-site 
power  generation 

-  Raised  floor  not  reguired 

-  Vendor  neutral  guaranteed 
compatibility 


Order  your  solution  today.  Call  888-289-APCC  x3287. 

Don't  see  the  configuration  you  need? 

Try  APC's  online  InfraStruXure"  BuildOut  Tool 
today  and  receive  3  FREE  APC  white  papers. 

Go  to  http://promo.apc.com  and  enter  key  code  v483y 

InfraStruXure"  BuildOut  Tool 

*  Prices  do  not  include  IT  equipment  *’  Install  and  delivery  times  may  vary 


Legendary  Reliability 


©2004  American  Power  Conversion  Corporation.  All  trademarks  are  the  property  of  their  owners.  E-mail:  esupport@apcc.com  *132  Fairgrounds  Road,  West  Kingston,  Rl  02892  USA  ISX4D4EF-US 
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Imagine  if  McAfee  could  protect  you  from  other  threats  the  way  it  protects  you  from  security  threats 


•rfou  never  know  when  security  threats  will  hit.  But  with  McAfee5  intrusion  prevention  technology,  you’ll  always  be  ready.  Our  proactive  solutions  provide  real-time 
protection,  so  you’re  free  to  focus  on  managing  your  business,  instead  of  constantly  reacting  to  worms,  viruses,  and  hackers.  Even  better,  when  you  choose  McAfee, 
iypure  protected  by  the  same  technology  that  leading  Global  2000  companies  rely  on.  Discover  next-generation  security  today  at  proactive.mcafee.com 

mm&  -:  ,  . 

^registered  trademark  of  McAfee.  Inc.  and/or  ns  affiliates  in  the  US  and/or  other  countries.  The  color  red  in  connection  with  security  is  distinctive  of  McAfee  brand  products  All  other  registered  and  unregistered  trademarks 

Me’e'j'yare  tjfe  sole  orooertv  of  their  respective  owners.  ©  2004  Networks  Associates  Technology.  Inc.  All  rights  reserved 
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SECURITY  ■  SWITCHING  ■  ROUTING 
VPNS  ■  BANDWIDTH  MANAGEMENT 
VOIP  ■  WIRELESS  LANS 


InfoExpress  simplifies  security  devices 


■  BY  TIM  GREENE 


InfoExpress  is  merging  its  LAN  and  WAN 
access-control  appliances  into  one  prod- 


■  Swan  Labs  last  week  bought  Web 
acceleration  vendor  Pivia  with  the 
intent  of  further  speeding  IP  connec¬ 
tions,  particularly  those  between  cli¬ 
ents  and  Web  servers.  The  Pivia  de¬ 
vice,  renamed  NetCelera  Web  Ac¬ 
celerator,  ships  separately  from 
NetCelera  Network  Accelerator,  but 
within  nine  months  the  two  devices 
and  their  management  software  will 
be  merged,  the  company  says.  The 
Pivia  technology  terminates  SSL  ses¬ 
sions  from  client  machines  accessing 
Web  servers,  caches  repetitively  re¬ 
quested  data  and  streams  lengthy 
documents  to  clients,  letting  them  be 
opened  as  soon  as  the  first  page  is 
downloaded  rather  than  waiting  for  all 
pages  to  download.  Swan  wouldn't 
say  how  much  it  paid  for  Pivia. 

■  Enterasys  Networks  last  week 
expended  its  partnership  agreement 
with  Siemens  under  which  Siemens 
Communications  will  integrate  Enter¬ 
asys'  full  line  of  Secure  Networks 
products  into  Siemens  HiPath  Enter¬ 
prise  Convergence  Architecture  for 
VoIP.  The  companies  also  said  they 
will  collaborate  on  joint  development 
of  HiPath  products  and  services. 
Siemens  has  been  expanding  its  cor¬ 
porate  network  offerings  recently. 
Earlier  this  fall  the  firm  deepened  its 
ties  with  Huawei  Technologies  to  re¬ 
sell  routers  and  switches  from  Hua- 
wei’s  Quidway  product  line. 

■  Start  up  Breach  Security  has 
announced  BreachGate,  an  appli¬ 
ance  intended  for  use  as  a  passive 
monitor  inside  the  corporate  network 
to  determine  if  an  insider  is  attempt¬ 
ing  to  hack  a  database  or  send  sensi¬ 
tive  data  outside  the  organization. 
BreachGate  costs  $39,000. 


uct  that  will  let  customers  simplify  local  or 
remote  network  access  policies. 

Called  CyberGatekeeper,  the  gear  comes 
in  two  models,  CG  1000  and  CG  2000,  and 
can  check  out  50  to  10,000  endpoints  at 
once  to  see  whether  they  comply  with 
security  requirements. 

Until  now,  the  devices  were  sold  on  the 
same  hardware  platform  with  either  the 
LAN  software  or  WAN  software,  but  not 
both. The  new  configuration  with  both  sets 
of  software  costs  the  same  as  each  of  the 
former  configurations  separately 

CyberGatekeeper  devices  sit  on  a  corpo¬ 
rate  network  and  determine  whether  com¬ 
puters  trying  to  gain  access  meet  standards 
such  as  having  updated  anti-virus  software 
in  place,  proper  registry  settings,  operating 
system  patches  and  the  like.  If  not,  the 
InfoExpress  gear  can  reject  access,  restrict 
access  to  a  limited  network  segment  or  trig¬ 
ger  a  pop-up  that  instructs  users  what 
upgrades  the  computer  needs  to  meet 


■  BY  JOHN  COX 

Bluesocket  this  week  is  scheduled  to 
uncrate  a  wireless  gateway  and  a  Web- 
based  management  application  that  lets 
network  administrators  remotely  authenti¬ 
cate,  secure  and  manage  wireless  LAN 
users  in  hundreds  of  branch  offices. 

The  new  gateway,  the  WG-400,  works  with 
any  brand  of  WLAN  access  point  and  sup¬ 
ports  up  to  50  users  in  a  site.  Users  simply 
plug  in  the  power  cord,  connect  the 
access  points  and  plug  the  gateway  into 
the  office  WAN  connection,  such  as  a 
router  or  DSL  modem.  Then  a  network 
administrator  at  a  corporate  data  center 
can  configure  the  gateway,  and  set  access 
and  authentication  policies,  traffic  priori¬ 
ties  and  bandwidth  limitations. 

The  results,  says  one  beta  tester,  is  a  high¬ 
ly  reliable,  simple-to-use  security  gateway 
that  works  with  any  mix  of  access  points 
and  clients.  “I  can  plug  this  into  any  net¬ 
work  and  enhance  it  without  having  to  buy 
all  new  access  points  and  [WLAN]  switch¬ 
es.  I  can  just  use  what  a  customer  already 
has,” says  Ron  Howell, senior  architect  with 
AT&T’s  Managed  Solutions  Group,  the  net¬ 
work  integrator  for  AT&T’s  business  clients. 

Howell’s  team  has  used  a  Bluesocket 


The  1U  CyberGatekeeper  will  support  50  to 
5,000  audited  endpoints.  The  2U  device  will 
support  250  to  10,000  endpoints. 


security  policies. 

If  the  device  is  logging  on  remotely 
CyberGatekeeper  intercepts  traffic  be¬ 
tween  the  VPN  gateway  and  the  firewall, 
dropping  traffic  from  devices  that  fail  the 
policy  check.  If  it  is  a  LAN  device,  it  can 
enforce  policies  via  LAN  switches.  The 
switches  can  reassign  access  privileges  for 
the  port  the  device  is  plugged  into. 

InfoExpress  products  perform  tasks  that 
overlap  with  those  performed  by  Cisco’s 
emerging  Network  Admission  Control 


gateway  for  years.  “I’ve  yet  to  have  one 
come  back”  because  of  a  failure,  he  says. 
Bluesocket’s  authentication  has  always 
been  strong,  according  to  Howell.  Like  the 
other  models,  the  WG-400  supports  a 
range  of  authentication  methods  (includ¬ 
ing  media  access  control  addresses,  digi¬ 
tal  certificates,  802.1X/Wi-Fi  Protected 
Access,  RADIUS  and  Lightweight  Direct¬ 
ory  Access  Protocol)  and  encryption 
schemes. 

Support  for  virtual  LANs  and  Blue- 
socket’s  QoS  features  let  Howell  segment 
traffic,  give  priority  to  certain  applications 
and  regulate  bandwidth  use. 

The  WG-400  has  four  10/100  Ethernet 
ports  for  four  directly  attached  access 
points.  Or  one  port  can  connect  to  a  local 
hub  or  switch  into  which  can  be  plugged 
up  to  five  additional  access  points.  A  fifth 
Ethernet  port  links  the  gateway  to  the  of¬ 
fice’s  WAN  connection. The  gateway  has  a 
maximum  throughput  of  50M  bit/sec  for 
unencrypted  traffic;  that  drops  to  20M  bit/ 
sec  when  encrypted. 

Bluesocket  competes  with  similar  gate¬ 
way  vendors  such  as  Vernier  and  Fort¬ 
ress,  and  with  WLAN  switch  vendors 
such  as  Airespace,  Aruba  Wireless  Net¬ 
works  and  Trapeze  Networks.  The  latter 


(NAC)  and  Microsoft’s  announced  Net¬ 
work  Access  Protection,  that  is,  to  secure 
endpoints  —  computers,  handhelds, 
Internet-enables  phones  —  before  granting 
network  access,  says  Pete  Undstrom,  a  sec¬ 
urity  analyst  with  Spire  Group.  InfoExpress 
says  it  plans  to  issue  new  software  next 
year  that  supports  NAC. 

Lindstrom  says  vendors  such  as  Sygate 
and  Check  Point  via  its  Zone  Labs  acquisi¬ 
tion  support  similar  endpoint  checks, as  do 
many  SSL  VPN  vendors  whose  gear  screens 
just  those  devices  trying  to  connect  over 
the  SSL  VPN.  “It’s  just-in-time  security  that 
can  evaluate  the  client,  has  a  quarantining 
capability  and  can  direct  the  client  to 
remediation,”  Lindstrom  says. 

The  software  for  the  devices  now  support 
Nortel  switches.  Previously,  CyberGate¬ 
keeper  supported  only  Cisco  switches.The 
software  also  supports  802. lx  port-level 
authentication,  which  makes  it  possible  to 
See  InfoExpress,  page  22 


The  WG-400  WLAN  gateway  from  Bluesocket 
lets  customers  centrally  secure,  configure 
and  manage  wireless  users  at  branch  offices. 


group  markets  boxes  to  centralize  WLAN 
management  and  security,  but  typically 
these  devices  are  paired  with  compan¬ 
ion  thin  access  points  from  the  same 
vendor. 

The  gateway  costs  $2,250  and  is  sched¬ 
uled  to  ship  in  mid-December. 

The  new  Blueview  Management  System, 
still  in  development,  will  be  a  software  ap¬ 
plication  pre-loaded  on  a  rack-mounted, 
Linux-based  server. 

The  current  management  software  in 
the  gateways  requires  one  device  to  be 
designated  a  master,  which  can  oversee 
about  50  other  gateways.  Blueview  is 
being  designed  to  manage  hundreds  of 
gateways.The  new  software  will  be  able  to 
detect  new  gateways,  create  a  system  of 
alerts  as  it  monitors  them,  and  schedule 
provisioning  jobs  such  as  software 
updates  or  changes  in  security  policies.  S8 


Bluesocket  to  secure  branch  WLANs 
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We  radically  changed  color  In  the  office 


And  with  it,  your  perspective  on  the  day. 


ot  business  as  usual. 
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The  normal  human  being  as  programmer 


No  offense  to  any  “real”  programmers 
reading  this,  but  you  are  a  special 
breed  —  and  you  know  it.  Of  all  the 
various  “sorcerers”  in  the  IT  trade,  program¬ 
mers  have  been  the  most  mysterious  for 
the  longest  time.  But  from  what  I’ve  seen 
coming  out  of  Microsoft  recently  those 
days  could  soon  be  over.  The  level  of 
sophistication  in  the  soon-to-be-released 
ASPNet  Version  2.0  combined  with  the 
drag-and-drop  approach  of  Visual  Studio 
2005  puts  sophisticated  Web  and  database 
programming  within  the  reach  of  many 
more  IT  professionals. 

OK,  so  why  should  network  professionals 
care?  Some  of  you  won't,  but  1  suspect  that 
there  are  many  of  you  who,  over  the  years, 
have  had  visions  of  possible  intranet  appli¬ 


cations  that  would  help  you  do  your  job 
better  —  perhaps  “inventory”  applications 
of  network  assets. 

Unless  you  were  lucky  enough  to  stum¬ 
ble  upon  the  “perfect”  package  that  imple¬ 
mented  what  you  required,  you  typically 
were  forced  to  justify  the  cost  of  using  in- 
house  programmers,  with  the  cost  and 
time  delay  that  usually  entailed, or  live  with 
a  bare-bones  “system”  built  around 
Microsoft  Excel  or  Microsoft  Access  with  a 
few  forms  or  reports. 

And,  while  Microsoft  certainly  prefers  that 
users  make  SQL  Server  their  database  of 
choice, the  company  has  done  a  fine  job  of 
making  Access  into  a  very  powerful  —  and 
easy-to-use  —  database  engine.  And,  while 
one  can  use  Access  “Data  Access  Pages”  to 
build  a  Web  browser  interface  into  Access, 
it  does  not  provide  the  flexibility  offered  by 
a  full-fledged  programming  environment. 

With  the  introduction  of  ASPNet  1.0  and 
now  ASPNet  2.0,  code-named  “WhidbejC 
Microsoft  has,  in  my  opinion,  finally 
brought  the  power  of  programming  into 


the  realm  of  smart  people  who  are  not  full¬ 
time  programmers. 

The  product  is  still  in  beta,  but  working 
code  and  the  new  interactive  development 
environments  are  available  at  www.nwfu- 
sion.com,  DocFinder:  4936. 

In  a  way,  it’s  like  the  change  that  took 
place  in  PC  internetworking  with  the 
introduction  of  plug-and-play  features. 
Before  that  time,  a  network  “wizard”  was 
required  to  provide  the  most  basic  con¬ 
nectivity  —  the  installation  of  a  network 
interface  card  (NIC). 

Remember  what  had  to  be  done?  If  the 
NIC  were  ISA,  you  might  have  to  set  switch¬ 
es  physically  In  any  case,  the  installation 
typically  involved  loading  an  array  of  soft¬ 
ware  and  then  “hand  tooling”  entries  in  the 
config.sys  and  sometimes  the  autoexec.bat 
files  to  load  the  drivers  —  making  sure  that 
the  software  settings  were  in  sync  with  the 
hardware  settings.  It  could  cost  more  to 
install  the  NIC  than  to  purchase  it. 

Plug-and-play  built  the  “smarts”  into  the 
system.  Any  user  could  physically  plug  in  a 


NIC  to  take  over  a  job  that  used  to  require 
calling  tech  support  or  a  value-added 
reseller. 

Taking  this  same  approach  with  program¬ 
ming  is  a  much  bigger  job,  of  course.  And,  it 
has  taken  a  much  longer  time.  ASPNet  1.0 
in  2000  was  a  giant  leap  forward. 

It  was  a  “revolution  not  an  evolution,”  and 
while  existing  developers  might  not  have 
been  happy  to  have  to  “relearn”  the  Active 
Server  Pages  environment  (as  it  was  a  radi¬ 
cal  break  with  ASP  3.0),  Microsoft  deserves 
credit  for  taking  a  fresh  look  at  the  chal¬ 
lenge  of  programming  today 

Version  2.0,  though,  brings  innovations 
such  as  Master  Pages,  code-less  database 
access  and,  importantly  streamlined  Web 
Development  environment  (DocFinder: 
4937)  that  can  trigger  a  flood  of  new  devel¬ 
opment.  Check  it  out. 


Tolly  is  president  of  The  Tolly  Group,  a 
strategic  consulting  and  independent  testing 
company  in  Boca  Raton,  Fla.  He  can  be 
reached  at  ktoliy@tolly.com. 


Axalto  unveils  smart 
card  powered  by  .Net 


BY  ELLEN  MESSMER 


Axalto  last  week  offered  up  a  smart  card 
based  on  Microsoft’s  .Net  technology, 
which  could  make  it  easier  for  corpora¬ 
tions  adopting  .Net  for  Web  services  to 
develop  card-based  security. 

The  Cryptoflex  .Net  card,  which  can 
provide  two-factor  authentication  and 
e-mail  encryption  based  on  public-key 
technology,  can  be  programmed  using 
.Net  tools,  including  Microsoft  Visual- 
Studio  .Net,  says  Neville  Pattinson,  direc¬ 
tor  of  business  development  for  Axalto. 
Until  now,  Axalto  had  based  its  smart 
cards  —  which  are  basically  coproces¬ 
sors  and  software  on  a  plastic  card  — 
on  either  a  proprietary  operating  system 
or  Java. 

“Before,  [the  developer]  had  to  specifi¬ 
cally  be  trained  in  a  Java  card  environ¬ 
ment,  which  created  errors  and  ineffi¬ 
ciencies,”  Pattinson  says.  “With  the 
Cryptoflex  .Net  card,  it  will  be  easier  to 
program  the  server,  client  and  card  appli¬ 
cations  together.” 

Axalto  worked  with  the  software  firm 
Hive  Minded  to  design  the  .Net  card.  It 
took  more  than  a  year  to  have  it  ready, 
largely  because  the  .Net  smart  card  foot¬ 
print  required  8K  bytes  of  RAM,  more 
than  double  the  amount  used  in  Java 
smart  cards. 

“We  had  to  search  for  the  right  chip  plat¬ 
form,”  Pattinson  says. 

The  .Net  card,  which  can  hold  an  X.509 
digital  certificate  and  run  a  variety  of 
cryptographic  processes,  hasn’t  yet  been 


implemented  in  any  organizations.  In 
contrast,  there  are  millions  of  Java-based 
smart  cards  in  use  today 

Microsoft  has  announced  its  willingness 
to  be  an  early  adopter  in  a  big  way. 

The  company  will  swap  out  the  Indala- 
brand  smart  cards,  now  used  by  more 
than  55,000  Microsoft  employees  for 
remote  authentication  to  the  network, 
to  replace  them  with  the  Cryptoflex  .Net 
smart  cards,  says  Charles  Fitzgerald, 
Microsoft’s  general  manager  of  platform 
strategy. 

Fitzgerald  says  the  .Net-based  card  will 
also  give  Microsoft  the  opportunity  to  test 
the  smart  card  in  applications  other  than 
remote-access  authentication. 

“With  .Net  we  can  put  more  applica¬ 
tions  on  the  card, such  as  perhaps  using  it 
for  cafeteria  credit  for  employees,”  says 
Fitzgerald,  noting  that  Microsoft  will  be 
looking  at  a  range  of  possibilities  for  inter¬ 
nal  use  of  the  Axalto  cards  next  year. 

Fitzgerald  says  Microsoft  anticipates 
developers  supporting  .Net  technology 
will  make  use  of  smart  cards  in  the 
future.  Microsoft  began  mandating 
employee  use  of  smart  cards  for  encryp¬ 
tion-based,  two-factor  authentication 
after  a  security  breach  a  few  years  ago 
involving  a  hacker  break-in  traced  back 
to  a  stolen  password. 

Smart  cards  with  X.509  digital  certifi¬ 
cates  provide  a  stronger  form  of  authenti¬ 
cation,  and  Microsoft  now  issues  a  smart 
card  to  every  employee  for  authenticat¬ 
ing  identity  over  the  network  or  encrypt¬ 
ing  e-mail.  ■ 


Strix  to  add  outdoor  WLAN 
mesh  to  product  mix 


BY  JOHN  COX 


Wireless  mesh  vendor  Strix  Systems  this 
week  is  set  to  unveil  an  outdoor  product 
line  designed  to  let  users  blanket  spaces 
with  wireless  LAN  connectivity  while  mini¬ 
mizing  cable  runs. 

The  product,  called  AccessOne  Outdoor 
Wireless  System  (OWS),  is  designed  to  cre¬ 
ate  a  WLAN  over  a  large  area  without  hav¬ 
ing  to  cable  each  access  point  to  a  wired 
network.  Instead, Strix’s  routing  software  lets 
WLAN  traffic  find  various  wireless  routes 
through  the  mesh  of  AccessOne  nodes, 
hopping  from  one  to  another. 

Besides  running  less  cable,  the  scheme 
lets  the  network  balance  traffic  load  and 
keeps  the  network  up  if  a  node  fails. 

Each  OWS  node  consists  of  two  to  six 
radios  in  a  rugged  enclosure  roughly  the 
shape  of  an  oversized  shoebox.  The  radios 
can  be  any  combination  of  standard 
802.1  lb,  g  or  a  radios,  or  proprietary  radios 
in  the  same  frequency  bands,  such  as  Mot¬ 
orola’s  Canopy  broadband  radio. 

One  or  more  of  the  radios  work  just  like 
any  other  access  point:  They  connect  with 


WLAN  clients  such  as  notebook  PCs  or 
wireless  VoIP  phones. 

But  usually  two  5-GHz  radios  are  dedicat¬ 
ed  to  creating  the  wireless  back-haul  mesh 
among  the  OWS  nodes.  Two  radios  maxi¬ 
mize  throughput. 

Using  a  single  radio  can  result  in  band¬ 
width  dropping  by  as  much  as  one  half 
with  each  hop,  a  point  being  made  publicly 
for  some  time  by  Francis  daCosta,  CTO  and 
founder  of  another  dual-radio  mesh  ven¬ 
dor,  Mesh  Dynamics. 

Other  rivals  with  mesh  offerings  include 
BelAir,  Firetide,  Nortel  and  Tropos.  All  of 
them,  like  Strix,  are  targeting  public  safety 
and  other  municipal  wireless  applications. 

The  OWS  radio  nodes  come  without 
antennas.  Customers  select  third-party 
antennas  to  meet  their  requirements. 

The  OWS  nodes  can  support  100  to  800 
milliwatts,  far  beyond  the  indoor  WLAN 
power  level,  which  is  typically  about  50.The 
six-radio  model  with  a  high-gain  antenna 
could  cover  an  area  of  up  to  about  1  square 
mile,  Strix  says. 

The  new  products  will  be  available  in 
early  2005.  Pricing  has  not  been  set.B 
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use  any  802. lx  LAN  switch  as  an  enforce¬ 
ment  point  for  CyberGatekeeper. 

The  new  release,  called  CyberGatekeeper 
3.0,  adds  support  for  wireless  LAN  switches 
Airspace  makes,  making  it  possible  to 
ensure  devices  connecting  via  wireless 
access  points  don’t  violate  security 
Also  new  with  CyberGatekeeper  3.0  is 


support  for  Juniper’s  SSL  VPN  gear,  making 
it  possible  to  screen  remote  machines  that 
are  making  SSL  connections.  Previously,  the 
software  would  check  devices  equipped 
with  Juniper’s  SSL  remote-access  client. 

CyberGatekeeper  1000  costs  $10,000  with 
a  license  for  50  simultaneous  user  devices 
and  ranges  up  to  $250,000  for  one  that  sup¬ 
ports  5,000  user  devices.  CyberGatekeeper 
2000  costs  from  $30,000  to  $500,000  with 
support  for  250  to  10,000  endpoints.  ■ 


The  server  platform  of  choice 

just  got  better. 


^^ducing  the  Intel0  Xeon  processor  with 
WBgSjfk  support  for  32-  and  64-bit  applications. 

iMaBtml  It  means  the  most  widely  used 

server  platform  in  the  world  can  now  work  even  harder. 

And  new  platform  technologies  enable  increased  power  savings, 

flexibility  and  performance.  For  more 

information — and  more  choice — visit  intel.com/business. 


Support  for  Improved  Flexible  memory, 

32-  and  64-bit  power-saving  I/O  and  storage 

applications  options  configurations 

inteh 
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Spam  and  virus  protection  at  an  affordable  price. 


/ 

i 

•  No  per  user  license  fees  / 

•  Prices  starting  at  $1399  j 

•  Powerful,  enterprise-class  solution  j 


\ 

Spam  Firewall 


■  trvriyht  2b04.  Barracuda  Networks,  Inc.  All  rights  reserved.  Reclaim  Your  Email.artd  Barracuda  Spam  Firewall  are  either 
lacmarvs  or  i egisf ered  trademarks  of  Barracuda  Networks,  Inc.  and/or  il  subsidiares  in  the  United  Stales  and' or  other  countries. 


Order  a  free  evaluation  unit  at 
www.barracudanetworks.com 


Aggressive  Reseller  Program 

POWERFUL  EASY  TO  USE  AFFORDABLE  Get  more  info  by  visiting  www.barracudanetworks.com/IFNY 

or  by  calling  1 -888-ANTI-SPAM  or  408-342-5400 
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NETWORK  EXCELLENCE 


ik _ 

QUESTION:  IS  STAYING  WITH  THE  STATUS  QUO 
YOUR  SECURITY  BLANKET?  IF  SO,  STOP 
READING.  MORE  THAN  LIKELY  JUNIPER 
NETWORKS  IS  NOT  FOR  YOU. 


But  if  you’re  in  a  daily  struggle  with  network  security  that’s  frankly,  revolting, 
lead  an  enterprise-wide  revolution.  Juniper’s  comprehensive  networking 
solutions  change  complex  legacy  configurations  into  clean-slate  convenience. 
With  unprecedented  heights  of  speed,  unbelievable  depth  of  processing, 
unsurpassed  security. 


►  NEVER-CHANGING  LEGACY  NETWORKS  CAN’T  MEET  EVER-CHANGING  DEMANDS. 

Multiple  applications,  platforms  and  configurations.  Multi-purpose  wireless  devices 
battling  for  access.  A  multitude  of  security  nightmares. 

We  feel  your  pain  multiplying.  Let  us  cure  it:  Juniper  your  net. 

Juniper  offers  security  and  performance  legacy  players  can  never  emulate,  only 
envy.  Because  it’s  impossible  to  bolt  onto  their  antiquated  hardware  what’s  built 
into  our  innovative  software.  Juniper’s  optimized  architecture  creates  incredibly 
scalable  solutions,  helping  eliminate  downtime,  upgrades  and  workarounds  while 
improving  speed,  reliability  and  performance. 

That’s  why  a  Juniper  network  thrives  in  the  most  demanding  conditions,  allowing 
customers  to  build  and  run  networks  in  the  harshest,  most  productive  and  competitive 
environments.  .»*. 


► 


888-JUNIPER  (888-586-4737) 


www.juniper.net 


INTEROPERABILITY:  END-TO-END,  EFFORTLESS,  FOR  EVERYONE. 

No  matter  your  current  configuration,  Juniper  offers  fast,  fluid  network  integration 
plus  seamless  and  secure  interoperability.  That’s  why  we’re  the  recognized  leader, 
and  the  preferred  brand  of  mission-critical,  industry-defining  entities  -  from 
the  largest  firms  on  Wall  Street,  the  leading  enterprises  demanding  perfect 
performance,  the  most  vigilant  government  agencies  on  worldwide 
watch  to,  count  ’em,  25  of  the  top  25  service  providers. 


MAKE  A  CHANGE  FOR  GOOD.  RIGHT  HERE. 

Trade  one-size-better-fit-all  legacy  networks  for  the  one-and-only 
solutions  innovator,  for  clear  competitive  advantages  and 
for  clearly  articulated  vision.  And  let  us  help  convince 
your  enterprise  to  leave  the  status  quo  behind. 

We’re  offering  innovative,  insightful  case  studies, 
thoughtful,  provocative  white  papers  plus  the 
networking  news  you  need  to  advance  your 
company  (not  to  mention  your  career).  Just  visit: 
http://www.juniper.net/solutions/literature/ 
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IT  execs  eye  Firefox  with  hope 


■  Sun  last  week  said  it  has  agreed  to 
purchase  IT  services  company 
SevenSpace.  With  the  purchase,  Sun 
takes  a  farther  step  away  from  its  tra¬ 
ditional  focus  on  supporting  only  its 
Solaris  operating  system  platform 
and  beefs  up  its  support  for  compet¬ 
ing  operating  systems  such  as  Win¬ 
dows,  HP-UX  and  AIX.  SevenSpace,  a 
4-year-old  company  that  specializes  in 
remotely  managing  and  monitoring  IT 
systems  and  applications,  was  of  par¬ 
ticular  interest  to  Sun  because  its 
managed  services  technology  will  let 
Sun’s  support  organization  provide 
service-level  agreements  for  software 
from  vendors  such  as  Oracle,  SAP 
and  PeopleSoft  on  a  wider  variety  of 
operating  systems.  The  companies  did 
not  disclose  financial  details  of  the 
agreement. 

■  The  change  to  flash  memory  from 
dynamic  RAM  for  PalmOne’s  new 
Treo  650  smart  phone  appears  to  have 
had  the  unintended  consequence  of 
reducing  the  amount  of  memory  that 
is  actually  available  to  users.  As  a 
result,  PalmOne  plans  to  offer  a  free 
128M-byte  expansion  card  toTreo  650 
purchasers  to  get  around  the  problem. 
Small  files,  such  as  contacts  or  tasks, 
now  must  be  stored  in  chunks  that 
are  much  larger  than  the  actual  files. 
This  means  that  the  same  files  a  user 
stored  on  a  Treo  600  might  not  all  fit 
on  theTreo  650.TheTreo  650  was 
released  last  month  through  Sprint 
and  palmOne's  Web  site. 

■  Consulting  firm  Connect  Com¬ 
puting  and  Mandrakesoft  have 
formed  a  partnership  to  offer  Linux 
server  software  to  small  businesses. 
The  two  have  come  up  with  Man- 
drakelinux  Dedicated  File  Server,  a 
Samba  file  server,  and  Manarakelinux 
Dedicated  Email  Gateway,  a  Postfix 
e-mail  gateway  that  ships  with  Spam- 
Assassin  and  virus  protection  soft¬ 
ware.  All  the  tools  needed  to  get  up 
and  running  install  as  part  of  a  single 
process,  and  the  software  is  priced  at 
less  than  $1,000.  The  Mandrakelinux 
Dedicated  File  Server  features  Samba 
3,  which  is  compatible  with  Windows. 


■  BY  ANN  BEDNARZ 

The  latest  release  of  the  open  source  Web 
browser  Firefox  has  spurred  millions  of 
downloads  and  a  groundswell  of 
anti-Internet  Explorer  sentiment, 
but  IT  executives  question  the 
role  Firefox  will  play  in  their 
enterprise  environments. 

There’s  a  lot  that  has  to  happen  before 
Firefox  is  enterprise-ready,  users  say  “It 
needs  to  be  made  compatible  with  the 
sites  and  applications  I  use  every  day”  says 
Eric  Beasley,  senior  network  administrator 
at  Baker  Hill,  a  Carmel,  Ind.,  service  pro¬ 
vider  that  administers  online  loan  applica¬ 
tions  for  banks.  “That  will  require  a  lot  of 
work  for  both  the  developers  of  Firefox  and 
the  developers  of  Web  applications.” 

Beasley  has  tried  Firefox  and  uses  it  daily 
to  browse  the  Internet.  But  for  the  business, 
there’s  no  switching.“We  would  not  be  able 


■  BY  DENI  CONNOR 

While  EMC  subsidiary  VMware  has  gar¬ 
nered  the  bulk  of  attention  regarding 
server  virtualization,  a  slew  of  vendors  are 
looking  to  address  what  they  see  as  rising 
demand  for  this  server  consolidation 
technique. 

At  the  top  of  that  list  is  Microsoft,  which 
earlier  this  fall  aired  plans  for  Virtual  Server 
2005.  Like  other  server  virtualization  tech¬ 
nologies, Virtual  Server  2005  lets  users  divvy 
up  servers  so  that  they  can  support  multi¬ 
ple  operating  system  instances  and  appli¬ 
cations.  The  software,  scheduled  to  ship 
next  year,  is  based  on  technology  obtained 
via  the  acquisition  of  Connectix  early  last 
year  that  works  on  Windows,  Linux  and 
Macintosh  servers  and  workstations. 

Also  entering  the  market  are  a  gaggle  of 
lesser-known  players,  such  as  Leostream 
and  PlateSpin,  whose  products  offer  man¬ 
agement,  security  and  other  such  capabili¬ 
ties  for  virtualized  systems. 

“Virtualization  is  moving  from  a  niche 
market  into  the  mainstream,  especially 
since  Microsoft  entered  the  market,”  says 
David  Crosbie,  CEO  of  Leostream,  whose 
software  manages  virtualization  servers 
attached  to  storage-area  networks  (SAN). 

But  it  is  VMware,  which  EMC  paid  $635 


to  throw  [Internet  Explorer]  out  at  this 
time.  We  are  an  [application  service  pro¬ 
vider],  and  our  applications  are  written 
specifically  for”  Internet  Explorer,  he  says. 

Likewise,  Daniel  Basse  says  he 
is  concerned  that  if  Internet 
Explorer  were  replaced,  it  could 
disrupt  some  Web-based  applica¬ 
tions  that  employees  use.  Basse  is  director 
of  IS  at  Ridge  Vineyards  in  Cupertino,  Calif., 
which  runs  Microsoft  applications  that  rely 
on  Internet  Explorer  tie-ins  such  as  Micro¬ 
soft  CRM  and  SharePoint. 

“These  features  and  [operating  system] 
tie-ins  are  at  the  heart  of  the  argument, ’’says 
Basse, who  has  a  test  machine  running  Fire¬ 
fox.  Microsoft-centric  business  applications 
can  benefit  from  the  tie-ins  Internet  Ex¬ 
plorer  has  to  those  applications  and  hooks 
to  Microsoft’s  operating  system  software. 
However,  hackers  can  take  advantage  of 
those  same  mechanisms,  he  says. 


David  Crosbie 

CEO,  Leostream 


million  to  acquire  earlier  this  year,  that 
sparked  the  server  virtualization  move¬ 
ment.  Recently  the  EMC  subsidiary  held  its 
first  annual  customer  conference,  where 
VMware  and  others  announced  the  latest 
developments  in  server  virtualization. 

VMware  announced  that  it  would  extend 
the  capabilities  of  its  Virtual  SMP  offering  to 
dual-core  and  four-processor  symmetrical 
multiprocessing  servers.  The  company, 
which  already  offers  dual-processor  SMP 
software,  is  doing  this  for  two  reasons.  First, 
VMware  officials  say  that  even  though 
most  server  workloads  run  fine  on  two- 
processor  servers,  15%  to  20%  of  customers 
require  machines  with  four  processors. 
Also, VMware  is  trying  to  keep  pace  with 
next-generation  servers  powered  by 
Advanced  Micro  Devices  (AMD)  and  Intel 
processors. 


“It’s  a  double-edged  sword  —  the  same 
[Internet  Explorer]  features  that  make 
some  in-house  business  applications  work 
smoothly  are  being  exploited  from  the  out¬ 
side  by  attackers  to  do  evil,”  Basse  says. 

To  make  Firefox  enterprise-ready  it  needs 
scalable  deployment  and  management 
features,  Basse  says.  Microsoft  Internet  Ex¬ 
plorer’s  Internet  Explorer  Administration 
Kit,  Active  Directory  support  and  registry 
editing  give  Internet  Explorer  “an  edge  in 
large-scale  deployments  and  allow  for 
broad  configuration  enforcement,”  Basse 
says. “We  wouldn’t  even  think  about  doing 
a  large-scale  deployment  of  Firefox  without 
these  features.” 

Rob  Enderle,  principal  analyst  at  Enderle 
Group,  says  Firefox  at  this  point  is  suited 
for  use  by  individuals,  not  large  compa¬ 
nies.  “The  kinds  of  things  that  need  to  be 
wrapped  around  the  product  —  providing 
See  Firefox,  page  28 


“If  you  look  at  processor  trends,  both 
Intel  and  AMD  have  shifted  from  increas¬ 
ing  the  clock  speed  of  their  processors  to 
increasing  the  number  of  processor  cores 
on  a  single  chip,”  says  Michael  Mullaney, 
vice  president  of  marketing  for  VMware. 
“Going  forward,  you  are  going  to  find  out 
that  even  a  two-CPU  server  actually  has 
four  processors.” 

VMware,  which  was  founded  in  1998, has 
partnerships  with  Citrix,  Dell,  HR  IBM, 
Oracle  and  Red  Hat,  among  others. 
Gartner  says  VMware  owns  the  bulk  of  the 
virtualized  server  market  and  will  control 
about  80%  of  it  by  the  end  of  next  year, 
though  the  research  firm  figures  Microsoft 
will  start  to  challenge  VMware  over  the 
next  couple  of  years. 

Here’s  a  look  at  some  of  the  other 
See  Servers,  page  28 


■  ANALYSIS 


Server  virtualization  is  on  the  rise 

Microsoft  and  smaller  players  getting  into  the  act 

I  ft  Virtualization  is  moving  from  a  niche  market 
into  the  mainstream,  especially  since  Microsoft 
entered  the  market.  9  9 


WHEN  YOU  STEPPED  AWAY 
FROM  YOUR  DESK,  A  WORM  WAS 
DETECTED,  QUARANTINED  AND 
ELIMINATED  BEFORE  ANYONE 
NOTICED  YOU  WERE  GONE. 
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Trend  Micro  and  Cisco  Systems —  working  together. 

Imagine  a  network  solution  so  advanced,  so  secure,  so  ingeniously  proactive, 

you  may  never  have  to  worry  about  an  outbreak  again. 

Find  out  more  at  www.trendmicro.com/cisco 
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multilayer  security,  making  sure  that  the 
patch  process  is  fully  vetted,  ensuring  com¬ 
patibility  with  the  enterprise’s  existing 
application  set  —  typically  takes  years,  and 
it  hasn’t  gone  through  that  process  yet.” 

Meanwhile,  the  danger  in  over-hyping  an 
up-and-comer  such  as  Firefox  is  that  the 
publicity  might  force  its  developers  to  try 
to  play  the  enterprise  card  before  the  tech¬ 
nology  has  a  chance  to  mature,  Enderle 
says.“It’s  kind  of  a  shame,  in  a  way,  when  this 
happens  before  a  product  is  ready  Because 
people  will  adopt  it  prematurely,  they  will 
have  bad  experiences  and  often  that  will 
kill  the  offering." 

Enterprise-ready  or  not,  Firefox  is  gener¬ 
ating  a  lot  of  buzz  in  the  industry.  Its  devel¬ 
oper,  Mozilla  Foundation,  says  5.6  million 
copies  of  Firefox  1.0  were  downloaded  in 
the  two  weeks  after  it  became  available  on 
Nov.  9.  Thus  far,  8  million  people  are  using 


the  Web  browser,  Mozilla  says. 

Mozilla  is  gaining  market  share  at  the 
expense  of  Microsoft,  says  Web  site  analysis 
firm  OneStat.com.  According  to  figures 
OneStat.com  released  late  last  month, 
Mozilla’s  browsers  —  including  Firefox  — 
account  for  7.35%  of  global  usage,  up  from 
2.1%  at  the  end  of  May  Internet  Explorer 
still  clearly  dominates  the  browser  market 
with  88.9%,  but  it’s  down  from  93.9%  at  the 
end  of  May 


The  face  of  Firefox 

Users  like  some  of  the  navigation  features  built  into  the  Firefox  1.0  Web 
browser,  which  5.6  million  people  downloaded  in  the  first  two  weeks  of 
its  availability. 


»  6»  Jo 

Bookn-*.  Ioob  &*> 

0  -  --e  -  9 

BoofcmartTtwffeg*...  COHO 

HarxgeBocAmtits-.. 

+  G*tto9SUrtad  U> 

Booknurt*  foot »  f aUa>  * 

#Pr»ft»-A.<fccov*d  kSwrcto* 

.'R.rf<W  and  Moata  Unfa 


tow  contact  today 

'WCip»  «»"**  £"***  w** 

M  offer*  VoP 


More  online! 

What  are  the  best  IT  strategies  and  practices  for 
growth  in  the  year  ahead?  Johna  Till  Johnson  and 
John  Gallant  offer  answers  at  The  2005  IT  Road  map 
—  a  new  Tech  Tour  event  coming  to  a  city  near  you. 
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Lighting  a  fire  under 
Microsoft 

One  clear  benefit  of  Firefox 
is  the  competition  it  brings, 

Enderle  says.  Microsoft  has 
stalled  development  of  Internet  Explorer 
in  the  past,  often  to  placate  corporate 
customers  fearful  of  browser  modifica¬ 
tions,  he  says. 

“Microsoft  does  better  if  it  has  somebody 
to  compete  with,”  Enderle  says. “Without 
any  competition  pushing  Microsoft  to 
develop  the  product,  and  with  the  cus¬ 
tomer  base  screaming  at  them  not  to 
change  anything  because  they  didn’t  want 
to  break  the  application  sets,  Microsoft  cut 
back  on  advancing  the  platform.” 

The  appeal  of  Firefox  is  its  features, 
smaller  footprint  and  better  performance, 
agrees  Earl  Baugh,  senior  systems  archi¬ 
tect  at  consumer  credit  and  financial  in¬ 
formation  provider  Equifax  in  Atlanta. 
“You  see  Microsoft  making  very  very  little 
improvement  in  [Internet  Explorer]  in 
general,  whereas  the  alternative  browsers 
seem  to  have  a  much  more  active  devel¬ 
opment  process.” 

According  to  Mozilla,  some  of  Firefox’s 


View  multiple  Web  pages 
as  "tabs"  within  the  same 
browser  window  to  simplify 
switching  among  pages. 
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companies  vying  for  attention  in  server 
virtualization: 

®  Leostream,  a  VMware  partner,  started  in 
2001  and  makes  the  Virtual  Machine  Con¬ 
troller  (VMC).The  software  is  designed  for 
managing  server  virtualization  products 
from  VMware  and  Microsoft,  presenting 
each  virtual  server  on  a  Web-based  display 
Its  latest  offering,  VMC  SAN  edition,  is  for 
managing  virtualized  servers  attached  to  a 
SAN.  It  costs  $2,800,  plus  $300  per  pro¬ 
cessor  managed. 

“One  of  the  biggest  features  of  Leo- 
stream’sVMC  SAN  Edition  is  the  ability  for 
your  virtual  machines  to  fail  over,”  says 
Leo  Frisino,  computer  systems  program¬ 
mer  for  the  New  York  State  Division  of 
Housing  and  Community  Renewal  in 
Albany“lf  a  virtual  machine  is 
executing  in  a  server  and  that 
box  fails,  the  virtual  machines 
will  come  up  on  the  other  ESX 
box.  VMware  does  not  have 
similar  failover  capability’ says 
Frisino,  who  virtualizes  five 
production  servers  with 
VMware's  ESX  Server. 

•  PlateSpin  recently  launch¬ 
ed  software  that  lets  IT  auto- 
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matically  convert  Windows  and  Linux 
servers  back  and  forth  from  physical 
servers  to  virtualized  servers.  PlateSpin’s 
PowerP2V  3.6,  which  runs  on  a  desktop 
PC,  starts  at  $3,000  for  a  version  that 
allows  25  conversions. 

•  Softricity  has  partnered  with  Aurema 
to  let  customers  manage,  streamline  and 
optimize  their  virtual  machine  environ¬ 
ments  running  VMware’s  ESX  Server  and 
Citrix  MetaFrame.  Softricity’s  software 
enables  applications  to  be  spread  across 
virtual  machines,  while  Aurema’s 
ArmTech  is  workload  management  soft¬ 
ware  that  monitors, optimizes  and  dynam¬ 
ically  allocates  processors  and  memoty 
for  applications  running  in  virtual 
machine  environments. 

Dave  Williams,  senior  systems  engineer 
for  the  Government  Employees  Hospital 
Association  in  Lee  Summit,  Mo.,  uses 
ArmTech  on  his  servers  to 
balance  application  loads. 
“Once  our  Citrix  servers  were 
rebooting,  locking  up  and 
had  the  processors  running  to 
100%,”  he  says.  “ArmTech  bal¬ 
ances  the  workload  of  appli¬ 
cations  with  the  [server’s] 
memory  and  processor,  so 
one  user  can’t  steal  100%  of 
the  processing  capability’ ■ 
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ffox  Project 

developer  resource  - 

'•fox.  visit  our  product  page 

project  aims  to  build  the  most  useful  web  browser  for  Windows,  Unux  end  MacOS 
intams  documentation  about  where  the  project  is  headed,  developer  documentation 


Live  bookmarks  organize 
RSS  feeds  and  blog  entries 
in  the  bookmarks  toolbar. 


Next  Major  Release. 

Ptatai  Mandta 

Project  Links 

2.0  Development  Roadmao  -  outlines  2.0  plans  and  prionties. 

The  Firefox  1.0  Charter  outlines  the  reasons  behind  this  project,  and  its  goals. 

Developer  Links 

IP  Source  Trfejlj 

Source  lives  under  ‘mozilla/browser',  •moziHa/tootkit*,  and  •mozilla/chrome*  in  tht 
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key  features  include  a  built-in  pop-up 
blocker  and  tabbed  browsing,  in  which 
Web  pages  are  loaded  in  “tabs”  within  the 
same  browser  window  to  make  it  easy  to 
switch  among  Web  pages.  Firefox’s  new 
“live  bookmarks”  feature  is  designed  to 
help  users  keep  track  of  RSS  feeds  through 
the  browser. 

Baugh  says  he’s  tried  Firefox  on  all  the 
applications  to  which  he  has  access.  “I’m 
using  it  as  my  default  browser  to  help 
determine  if  it’s  ready  for  a  larger  deploy¬ 
ment,”  he  says. 

He  says  he  would  consider  switching  to 
Firefox,  but  only  if  it  didn’t  raise  compati¬ 
bility  problems.  “If  the  browser  allows  for 
viewing  all  of  the  same  content  as  [In¬ 
ternet  Explorer] ,  it  has  a  chance,”  Baugh 
says.  “However,  to  date,  inevitably  some 
Active  X  control  or  display  component 
doesn’t  display  in  the  alternative  browsers.” 

In  his  testing  so  far,  Baugh  has  found 
problems  are  not  typically  with  the  inter¬ 
nal  applications  he  manages,  but  with 
Web  pages  that  are  outside  of  his  control. 
For  example,  pages  from  Equifax’s  exter¬ 
nal  benefits  providers  might  not  function 
properly 

Baugh  says  moving  from  Internet  Ex¬ 
plorer  to  an  alternative  browser  could  re¬ 
duce  security  risks  because  a  non-  Internet 
Explorer  browser  would  be  less  of  a  target. 
“Part  of  the  motivation  for  writing  exploits 
against  [Internet  Explorer]  is  that  you’re 
going  to  find  it  on  every  machine  that  has 


Windows  installed.  Even  if  the  end  users  uti¬ 
lize  another  browser,  it’s  still  there.  But,  if 
your  default  browser  isn’t  [Internet  Ex¬ 
plorer]  ,  then  you  have  a  smaller  chance  of 
having  these  exploits  work,”  he  says. 

Other  users  are  more  skeptical  that 
deploying  Firefox  will  yield  a  more  secure 
environment.  “I  don’t  believe  that  open 
source  software  is  more  secure  by  default. 
As  long  as  human  beings  create  software, 
bugs  and  security  risks  will  be  in  the  soft¬ 
ware  we  use,”  Beasley  says. 

Moving  to  another  browser  might  reduce 
security  risks  in  the  short  term,  but  not  in 
the  long  term,  Basse  says.“Whoever  has  the 
largest  market  share  for  their  product  will 
become  the  target  for  hackers,  and  attack¬ 
ers  will  find  holes  in  almost  any  product, 
given  enough  interest  and  time,”  Basse  says. 
“Switching  to  Firefox  might  resolve  the  lat¬ 
est  slew  of  problems,  but  if  everyone 
switched  to  Firefox,  the  hackers  would  sim¬ 
ply  begin  working  on  breaking  into  it.” 

Enderle  agrees.  “The  platforms  that  are 
going  to  be  most  used  are  going  to  be  most 
exploited  because  that’s  how  the  profes¬ 
sional  attackers  work,”  he  says.  As  Firefox’s 
popularity  grows,  it  will  become  more  of  a 
target  for  hackers,  he  says.  “We’re  going  to 
see  over  the  next  18  months  if  Firefox  can 
take  the  kind  of  pressure  that  Microsoft  has 
now  been  under  for  several  years.” 

Senior  Writer  Denise  Dubie  contributed  to 
this  story. 
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Working-At-Home  Walter 


Who  can  blame  Working-At-Home  Walter  for  feeling  a  bit 
smug  as  he  tunes  his  radio  to  the  morning  traffic  report? 
He’s  not  stuck  in  that  freeway  mess  caused  by  the 
overturned  lobster  truck.  He  hasn’t  even  shaved,  and 
may  well  not  until  dinner.  Working-At-Home  Walter 
has  swapped  his  wingtips  for  fuzzy  slippers,  but  still 
manages  to  stay  highly  productive— not  to  mention  better 
fed  than  his  in-office  compatriots.  As  Working-At-Home 
Walter  says,  it’s  all  a  matter  of  having  the  right  technology  to 
make  a  home  a  castle  of  productivity. 


Do  you  feel  you  are  really  as  productive  at  home  as  you  used  to  be  in 
the  office? 

Actually  no.  I’m  more  productive!  It  took  me  a  while  to  realize  that  all  those 
water  cooler  conversations,  nosh  breaks,  meetings  that  always  seem  to  run 
longer  than  they  need  to,  and  other  office  antics  didn’t  help  my  productivity  one 
iota.  At  home,  I’m  totally  focused.  I  have  more  flexibility,  too.  If  I  have  to  stop 
work  at  4:30  to  start  dinner— I’m  a  great  cook  you  know— I’ll  go  back  to  work 
at  7  to  finish  up. 

How  has  your  boss  reacted  to  your  working  at  home  so  much? 

My  boss  and  the  rest  of  the  brass  believe  that  happy  workers  are  productive 
workers.  Mobile  technology  from  Nokia  has  helped  me  balance  my  home  and 
work  life.  I’m  very  highly  motivated  to  be  as  productive  here  as  I’d  be  in  the 
office,  maybe  even  more  so,  because  working  at  home  gives  me  that  balance  I 
need. 


About  the  Interviewer 


Laberis  was  editor  in  chief  of  Computerworld  for  ten 
Vs-  € T II  years  (1986-1996).  He  is  president  of  Bill  Laberis 
Associates,  a  custom  publishing  and  content  company 
■Mtk  Mk  (www.laberis.com).  His  columns,  Webcasts,  supplements 
and  magazines  are  well-known  and  respected  throughout  the  high- 
tech  industry. 

And  the  IT  people,  what  do  they  think  of  your  working  remotely? 

My  buddy  Joe  in  IT  says  it  doesn’t  matter  to  him  and  his  crew  where  I  work. 
Nokia  helped  the  IT  department  apply  best  IT  practices  to  all  the  mobile  gear 


they  support,  so  extending  key  applications  to  sofa  jockeys  like  me  has  been  no 
problem.  Excuse  me  a  second.  Gotta  take  a  call  from  one  of  my  kids  at  soccer 
practice. 

So  what’s  the  secret? 

In  a  word,  Nokia.  Only  it’s  no  secret  because  the  company  is  world  renowned 
for  helping  guys  like  me  commute  less,  connect  with  coworkers  from  the  comfort 
of  my  patio  lounge  chair,  and  work  in  my  pj’s.  My  mom  got  me  these,  so  no  laugh¬ 
ing,  OK? 

What  are  the  most  important  technologies  for  your  work-at-home 
success? 

My  laptop  is  numero  uno  with  me,  but  only  if  I  can  have  confidence  that  the 
connection  I  have  back  to  corporate  is  secure,  given  the  info  I  need.  Mobile  email 
is  my  killer  application  so  it  has  got  to  be  working  24/7. 

Why  is  security  so  important  to  you? 

Don’t  let  the  slippers  and  pajamas  fool  you.  I’ve  got  an  important  major 
accounts  job.  I  need  access  to  business-critical  information  intended  for  very  few 
eyes.  That  access  has  to  be  as  secure  as  the  gold  at  Fort  Knox.  So  we  use  Nokia 
Secure  Access  System.  I’m  no  computer  whiz,  but  I’m  told  this  system  leverages 
something  called  SSL  technology  running  on  Nokia’s  IP  Security  Platforms.  Look, 
the  bottom  line  is  this:  Instead  of  worrying  if  my  data  is  safe,  I  get  anytime, 
anywhere  access  to  email,  the  corporate  intranet,  management  portals,  and  just 
about  any  data  I  need— instantly  and  in  real  time.  It’s  way  cool! 

What  other  mobile  technologies  work  for  you? 

I  love  my  Nokia  6820.  It  gives  me  quick  and  reliable  access  to  the  data  I  need 
and  the  people  I  want  to  contact.  It’s  got  a  great  color  screen  for  my  tired  eyes. 
The  quality  of  the  speakerphone  for  conference  calling  is  outstanding.  Depending 
on  my  mood  and  needs,  I  also  use  my  smartphone  based  on  the  Nokia  Series  60 
software  platform.  It’s  unbeatable  for  voice  and  data  connections,  whether  for 
email  on-the-fly  or  just  messing  around  on  the  Internet. 

You  are  in  great  shape.  How  do  you  stay  away  from  the  refrigerator 
during  the  day? 

Working  at  home  takes  some  discipline.  I  ration  myself  two  trips  to  the  kitchen 
for  snacks  a  day,  just  like  a  regular  office  break.  And  once  in  a  while  I  ask  my  wife, 
“Honey,  do  I  look  fat?”  Let’s  just  say  I  married  an  honest  woman. 


Learn  how  to  mobilize  your  team  and  increase  business  productivity. 
Download  “The  Anytime,  Anyplace  World”  white  paper. 

nokiaforbusiness.com 
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It  takes  an  integrated  security  solution  to  make  sure  the 
right  people  have  the  right  access  at  the  right  time. 

eTrusf  Identity  and  Access  Management  Solutions 

These  days,  a  vital  aspect  of  security  management  is  providing  customized 
levels  of  access  for  countless  employees  and  partners  while  also  protecting 
your  customers  from  identity  theft.  That's  one  complicated  job-and  one  that 
can  be  made  much  easier  with  CA's  eTrust  Identity  and  Access  Management 
(1AM)  Solutions.  They  enhance  security  and  reduce  costs  by  automating 
processes  and  enabling  self-administration,  in  addition  to  providing  policy-based 
cross-platform  protection  for  web,  mainframe,  and  application  resources 
enterprise  wide.  To  find  out  how  CA's  1AM  solutions  can  improve  your  business, 
attend  one  of  our  workshops,  ca.com/etrust/workshop 
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■  WEB  SERVICES 
AND  SYSTEMS  MANAGEMENT 


Tivoli  plans  to  be  Big  Blue’s  MVP 

Technology  challenges,  competitors,  internal  politics  keep  software  group  on  its  toes, 


Steady  as  she  goes 


IBM  Tivoli  has  maintained  steady  earnings  since  IBM  bought  the 
management  software  company  in  1996. 


Revenue,  net  income  (in  billions) 


$83.3 


$85.0 


$89.1 


$83.0 


IBM  total  revenue 
Net  Income 
Software  revenue 


1999  2000  2001  2002  2003 

Tivoli  software  is  one  of  five  IBM  Software  Group  brands  -  DB2,  Lotus,  Rational,  Tivoli  and  WebSphere. 


■  BY  DENISE  DUBIE 

Fighting  to  keep  its  lead  among  aggres¬ 
sive  competitors,  IBM  Tivoli  in  the  coming 
year  plans  to  improve  its  IT  service  man¬ 
agement  offerings  to  help  Big  Blue  deliver 
on  its  autonomic  computing  and  On 
Demand  Business  promises. 

For  the  past  eight  years,  IBM  Tivoli  has 
successfully  given  IBM  an  edge  with  its  sys- 


■  IBM  and  Sybase  last  week  teamed 
to  add  support  for  Sybase's  database 
software  on  IBM’s  eServer  Open- 
Power  Linux  servers.  The  two  compa¬ 
nies  said  they  will  jointly  sell  and  mar¬ 
ket  their  products.  The  move  extends 
IBM's  support  for  one  of  its  software 
rivals:  Sybase’s  Adaptive  Server 
Enterprise  database  competes 
against  IBM’s  DB2  software,  both  of 
which  also  vie  with  databases  from 
Oracle  and  Microsoft.  The  agreement 
could  help  IBM  find  new  customers  in 
the  financial  services  field,  where 
Sybase  has  a  strong  presence.  It  also 
gives  Sybase  access  to  IBM’s  market¬ 
ing  activities  and  sales  channel.  IBM 
said  support  for  Sybase  ASE  will  be 
available  early  next  year. 

■  Relicore  this  week  announced  that 
the  newest  version  of  its  automated 
IT  service  management  configuration 
software,  Clarity  4.0,  will  be  available 
Dec.  10.  The  product  consists  of  a 
management  console  and  central 
data  repository,  which  is  updated 
based  on  new  information  received 
from  agents  installed  on  managed 
servers.  The  company  says  Clarity 
also  helps  customers  link  IT  services 
with  specific  servers  and  applications 
in  a  topological  map.  In  this  release, 
Relicore  provided  APIs  to  help  IT 
managers  link  the  configuration  data 
to  network  and  systems  management 
tools  such  as  HP  OpenView,  Tivoli  TEc 
and  Computer  Associates'  Unicenter. 
Pricing  starts  at  $200,000. 


terns  management  software.  According  to 
Gartner,  IBM  in  2003  led  the  market  for 
enterprise  systems  management  software 
with  nearly  34%  of  worldwide  license  rev¬ 
enue,  which  overall  grew  about  11%  in 

2003  to  $5.6  billion.  Competitor  Computer 
Associates  trailed  IBM  with  about  12%,  fol¬ 
lowed  by  BMC  Software  at  just  more  than 
8%  and  HP  with  about  7%. 

Within  IBM, Tivoli  also  managed  to  make 
promising  numbers.  Overall,  IBM’s  software 
group  —  comprised  of  five  divisions  — 
increased  its  revenue  in  the  third  quarter  of 

2004  to  $3.6  billion,  up  5%  from  last  year’s 
third  quarter.  Of  that,  revenue  for  IBM’s 
Tivoli  grew  19%  overall,  and  specifically 
Tivoli  security  software  revenue  was  up 
47%.  IBM  doesn’t  offer  specific  dollar  fig¬ 
ures  for  its  software  divisions. 

In  the  coming  year,  Tivoli  hopes  to  break 
further  away  from  the  big  four  manage¬ 
ment  vendors  and  make  IBM  the  leader  in 
IT  service  management  as  well.  Tivoli  will 
play  a  bigger  role  in  tying  IT  systems  dir¬ 
ectly  to  business  processes  and  objectives, 
and  managing  groups  of  IT  components  as 
services. 

Expand  the  plan 

For  Tivoli,  that  means  expanding 
beyond  its  systems  management  exper¬ 
tise  and  into  server,  identity  application, 
and  change  and  configuration  manage¬ 
ment,  as  well  as  IT  governance,  or  manag¬ 
ing  the  allocation  of  IT  resources.  Tivoli 
executives  (mostly  veteran  IBMers)  say 
the  management  software  group  will  play 
a  key  role  in  helping  customers  enable 
automated  IT  service  management 
across  their  enterprise  networks. 

“The  transformation  of  Tivoli  isn’t  about  it 
becoming  more  absorbed  into  IBM.  It’s 
about  Tivoli  doing  more  than  systems  man¬ 
agement, ’’says  Bob  Madey  vice  president  of 
strategy  and  business  development  for 
Tivoli  and  a  24-year  IBM  veteran.  “Tivoli  is 
going  to  deliver  the  common  architecture 
and  common  data  models  to  link  IT  per¬ 
formance  to  business  processes. Within  the 
next  three  years,  all  Tivoli  applications  will 
be  built  on  a  [service-oriented  architec¬ 
ture]  and  share  an  underlying  data  model 
to  enable  data  sharing  across  enterprise 
systems.” 

Another  example  of  how  Tivoli  plans  to 
weave  its  technology  throughout  IBM  is  in 
Big  Blue’s  Common  Event  Infrastructure 
(CEI),  the  future  development  of  which 


falls  to  Tivoli  and  its  peer  WebSphere  and 
DB2  software  divisions.  CEI  is  based  on  the 
IBM-developed  Common  Base  Event  spec¬ 
ification,  a  standard  format  for  event  logs 
that  devices  and  software  can  use  to  keep 
track  of  transactions  and  other  activity 

CEI  would  enable  WebSphere  business 
process  events  and  network  device  events 
from  Tivoli  monitoring  products  to  be  inte¬ 
grated,  normalized  and  correlated  on  one 
screen  for  IT  managers. The  goal  is  to  more 
quickly  show  the  IT  cause  for  a  business 
process  slowdown. 

Tivoli  also  intends  to  head  up  Big  Blue's 
push  for  automating  IT  actions  along  the 
lines  of  business  objectives  with  technol¬ 
ogy  centers  and  partnerships.  For  example, 
IBM  last  week  announced  the  Advanced 
Tivoli  Orchestration  and  Provisioning 
Technology  Center,  which  is  designed  to 
help  customers  perform  proofs  of  concept 
with  IBM’s  gear  and  Tivoli’s  automated 
server  provisioning  software  that  it 
acquired  from  ThinkDynamics. 

“The  move  to  an  On  Demand  operating 
environment  is  fairly  heavy  stuff.  These 
types  of  initiatives,  these  technology  cen¬ 
ters,  are  designed  to  give  our  customers  the 
practical  experience  they  need  to  acceler¬ 
ate  their  adoption  of  automated  IT  man¬ 
agement,”  Madey  says. 


Somebody  to  lean  on 

Yet  IBM  is  quick  to  acknowledge  Tivoli 
can’t  do  it  all  on  its  own.This  year  the  com¬ 
pany  partnered  with  gear  vendor  Cisco  to 
develop  products  to  automate  access  and 
identity  management,  as  well  as  server 
and  storage  management. 

The  identity  management  products  are 
set  to  be  available  this  month  and  draw  on 
technology  Cisco  uses  in  its  Network 
Admission  Control  (NAC)  initiative,  which 
involves  the  company  partnering  with  anti¬ 
virus  vendors  to  scan  client  devices  and 
determine  if  they  can  gain  access  to  a  net¬ 
work.  For  example,  the  Tivoli  compliance 
software  will  scan  for  operating  systems, 
patches,  firewalls,  applications  such  as 
Kazaa  and  viruses  to  determine  if  a  device 
can  gain  access. 

Cisco  also  earlier  this  year  developed 
switch  hardware  for  IBM’s  BladeCenter 
products  that  will  help  improve  traffic 
flows  inside  blade  server  chassis,  the 
companies  say.  Integration  of  IBM  server 
and  storage  provisioning  software  with 
Cisco  Catalyst  6500  LAN  switches  and 
MDS  9000  storage-area  network  switches 
will  let  users  operate  data  center  net¬ 
work  and  computing  infrastructure  as 
one  system. 

See  Tivoli,  page  33 


IKSl £  j To  manage  this  much  money,  you  need  a  solution  that  offers  optimum  performance  and  real-time  flexibility.  Microsoft  found  both  in  the 
AMD  Opteron™  processor  running  Windows  Server™  2003,  Enterprise  Edition.  The  AMD  Opteron  processor  with  its  Direct  Connect 
"oWL3jl  Architecture  already  powers  the  world’s  highest  performing  2-way  and  4-way  x86  servers.  Now  Microsoft  Treasury  managers  are  using 
it  to  slash  the  time  it  takes  to  run  their  complex  risk-analysis  software.  Meanwhile,  they  have  the  flexibility  to  go  from  32-  to  64-bit 
applications  without  disrupting  their  business.  At  AMD,  we  believe  it’s  critical  that  technology  should  migrate  on  your  terms  to  help  you  realize  your 
unique  vision.  It’s  one  of  the  reasons  why  leading  OEMs  offer  enterprise-class  solutions  powered  by  AMD  Opteron  processors.  Would  you  like  to  learn 
just  how  much  of  a  difference  they  can  make  to  your  company?  Go  to  www.amd.com/enterprise 
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INTELLIGENT 
"SYSTEMS- 
O  N-A-CH  I  P" 
EARNING 
IT  ACCOLADES 

BY  ELISABETH  HORWITT 


Broadband  IP  network  convergence  has  been  redefining  itself  of 
late,  both  as  a  market  and  as  a  corporate  strategy.  As  a  result, 
“We’ve  emerged  from  the  ‘kick-the-tires’  phase,”  says  John  Roese, 
CTO  of  Enterasys  Networks.  “CIOs  are  seeing  something  meaning¬ 
ful  at  the  end  of  the  tunnel  that  will  make  workers  more  efficient 
and  effective,”  and  their  companies  more  competitive. 


As  the  technology  has  matured,  and 
products  have  become  more  standards- 
based,  corporate  technical  decision 
makers  have  gained  confidence  that  a 
converged  IP  network  infrastructure 
will  provide  a  firm,  forward-migratable 
foundation  for  the  next  wave  of  strate¬ 
gic  business  applications.  “Our  cus¬ 
tomers  told  us  they  wouldn’t  go  with  IP 
telephony  if  they’re  just  getting  an  IP 
phone  that  acts  like  their  former  tele¬ 
phone,  or  if  they’re  just  moving  from 
one  proprietary  architecture  to  anoth¬ 
er,”  Roese  notes. 

A  lot  of  big  corporations  have  spent 
the  last  few  years  consolidating  data 
streams  from  multiple  applications 
and  access  points  onto  a  single  back¬ 
bone  based  on  TCP/IP  and  high-speed 
Ethernet.  Recent  statistics  tell  the 
story:  Dell’Oro  Group  expects  Gigabit 
Ethernet  port  shipments  to  at  least 
double,  from  13  million  units  in  2003 
to  more  than  27  million  in  2004, 
according  to  Seamus  Crehan,  a  direc¬ 
tor  at  the  networking  and  telecommu¬ 


nications  research  firm. 

More  recently,  companies  have 
begun  moving  beyond  broadband  con¬ 
verged  data  networking  toward  a  fully 
integrated,  enterprise  network  infra¬ 
structure  that  can  handle  the  full  range 
of  services:  from  teleconferencing  to 
storage  networking  to  server  clustering. 
Helping  them  to  reach  their  goal  with  a 
minimum  of  pain  is  an  emerging  breed 
of  intelligent  network  hardware  based 
on  highly  integrated  semiconductors 
known  as  “systems-on-a-chip.” 

“Whether  you’re  talking  about  VoIP 
[voice  over  IP]  or  iSCSI  storage,  it’s  not 
just  about  high-speed  connectivity  any¬ 
more;  you  have  to  move  bits  around  the 
network  intelligently,  in  order  to  ensure 
security,  reliability,  and  quality  of  serv¬ 
ice,”  says  Roese. 

Increasingly  intelligent  and  versatile 
IP  network  infrastructures  are  forming 
the  basis  for  a  wave  of  new  applications 
that  are  providing  businesses  with 
strategic  advantages  as  well  as  signifi¬ 
cant  cost  savings. 


Moving  Beyond  VoIP 

Consider,  for  example,  the  veritable 
explosion  in  American  companies’  use 
of  VoIP  technology  that  merges  voice 
and  data  onto  a  single  I  P/Ethernet 
infrastructure.  A  2003  IDC  report  pre¬ 
dicted  that  U.S.  spending  on  hosted 
VoIP  will  reach  approximately  $281 
million  this  year,  growing  to  $1  billion 
next  year  (2005).  By  2007,  revenue  is 
expected  to  reach  $6.7  billion. 

In  a  2003  Nemertes  Research  survey 
of  42  large  corporations,  62%  of  respon¬ 
dents  said  they  were  currently  using  IP 
telephony;  19%  were  running  a  trial; 
and  the  rest  planned  to  implement  it 
within  the  next  year  or  two. 

The  reported  return  on  investment 
(ROI)  and  measurable  benefits  the  VoIP 
pioneers  cite  are  impressive,  and 
include  lower  maintenance  and  man¬ 
agement  costs,  the  result  of  dealing  with 
one  set  of  network  boxes,  interfaces, 
and  cables  instead  of  two  or  more. 
Companies  report  saving  thousands  of 
dollars  per  month  by  using  IP  telephony 
to  bypass  long-distance  toll  calls;  global 
firms  have  saved  much  more  on  inter¬ 
national  calls. 

And  cost  savings  are  just  the  begin¬ 
ning.  Converged  IP  networking  has 
paved  the  way  for  a  new  generation  of 
applications  and  software  tools  that  are 
boosting  end-user  productivity  and 
helping  companies  gain  a  competitive 
advantage.  »» 
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Worldwide  Ethernet  ASSP/ASIC  Semiconductor 
Revenue  Share  by  Vendor,  2003 

Other  (1 1.4%) 


Realtek 
(8.K0' 


Broadcom 

(25.8%) 


Intel 

(22.1%) 


Marvell  (14.0% 


Total  =  $2.07B 

Note:  "Other"  includes  ADMtek  (now  Infineon),  Agilent,  AMCC, 
AMD,  Cicada  (now  Vitesse),  Fujitsu,  IBM  Micro,  NEC, 
PMC-Sierra,  SwitchCore,  Texas  Instruments,  Toshiba, 

Vitesse,  and  Zarlink. 


SOURCE:  IDC,  2004 


Instant  voice  messaging  is 
a  perfect  example,  says  Jeff 
Snyder,  a  research  vice  presi¬ 
dent  at  Gartner.  “You  click  on 
my  name,  and  my  phone 
rings,  no  matter  where  I  am; 
as  long  as  I’m  logged  onto  the 
network,  it  knows  how  to 
reach  me.  Drag  in  a  col¬ 
league’s  name  and  you  have 
an  ad  hoc  conference  call.” 

Another  promising  devel¬ 
opment  is  convergence  on 
end-user  devices  across  a 
unified  end-to-end  infra¬ 
structure.  Broadcom  has  introduced 
switch  and  VoIP  chipsets,  for  example, 
that  will  enable  OEMs  to  build  Wi-Fi®- 
enabled  cell  phones,  “so  you  can  roam 
between  the  cellular  and  Wi-Fi  IP  teleph¬ 
ony  worlds  with  one  device,”  says  Roese. 

User  Demand  Driving 
IP  Convergence 

Indeed,  user  demand  is  one  of  the  biggest 
drivers  behind  converged  IP  networking 
strategies.  “Users  want  voice,  data,  and 
video  services  delivered  in  an  integrated 
fashion,”  to  support  the  growing  body  of 
multimedia  productivity  tools  and  appli¬ 
cations  being  offered  on  desktops,  lap¬ 
tops,  and  the  latest  mobile  computing 
devices,  says  Charles  Salameh,  vice  presi¬ 
dent  of  emerging  solutions  at  Bell 
Canada,  a  telecom  service  provider  and 
systems  integrator. 

IT  decision  makers  see  converged  IP 
networking  as  their  best  shot  at  meeting 
users’  multimedia  needs  over  the  long 
haul.  And  they’re  counting  on  intelligent 
Gigabit  Ethernet  hardware  to  help  them 
with  quality  of  service  (QoS)  and  securi¬ 
ty  management,  across  an  increasingly 
diverse  set  of  network  services  and 
media  traffic. 

To  address  this  demand,  networking 
vendors  are  providing  their  latest  Gigabit 
Ethernet  products  with  the  intelligence  to 
handle  these  tasks  and  a  great  deal  more. 
And  much  of  this  high-level  intelligence 
resides  in  silicon  solutions  that  have  tra¬ 
ditionally  been  the  “nuts  and  bolts”  of 
networking  equipment,  says  Kevin  Tolly, 
president  of  The  Tolly  Group  research 
firm.  In  the  last  year  or  two,  chipmakers 
like  Broadcom  “have  gone  up  the  stack 
tremendously,  and  have  preintegrated  a 
lot  of  the  functionality  and  capabilities,” 
he  adds. 

“The  trend  is  toward  supporting  a 


higher  capacity  of  networking  interfaces 
and  a  broader  range  of  services  on  the 
same  piece  of  equipment,  and  using  sili¬ 
con  intelligence  to  handle  sophisticated 
management  of  converged  applications 
running  across  a  single  Ethernet  net¬ 
work,”  says  Ford  G.  Tamer,  group  vice 
president  of  Broadcom’s  Network 
Infrastructure  Business  Group.  “Such 
migration  to  converged  IP  networks  can 
mean  huge  savings  in  maintenance 
costs,”  he  adds.  “You’re  managing  your 
desktops,  laptops,  VoIP  phones,  wireless 
access  points,  security,  and  storage  needs 
within  the  same  equipment,  instead  of 
across  two  or  more  boxes.” 

Broadcom  in  Step 
with  Key  Trends 

Broadcom®  silicon  solutions  are  at  the 
forefront  of  these  trends.  For  example, 
systems  using  Broadcom’s  StrataXGS® 
family  of  enterprise  switch  products  offer 
enhanced  scalability  and  multilayer  intel¬ 
ligence  to  address  the  different  service- 
level  needs  of  voice,  video,  and  data  traf¬ 
fic  within  business  environments,  Tamer 
says.  This  enables  IT  managers  to  maxi¬ 
mize  network  uptime  and  ensure  securi¬ 
ty  while  promoting  ease  of  management. 

Furthermore,  Broadcom’s  NetXtreme™ 
II  C-NIC  (Converged  NIC)  is  the  first 
Gigabit  Ethernet  NIC  that  can  simultane¬ 
ously  perform  storage  networking,  high- 
performance  clustering,  accelerated  data 
networking,  and  remote  system  manage¬ 
ment  on  a  standard  Ethernet  network, 
according  to  Allen  Light,  Broadcom’s  serv¬ 
er  controller  product  line  manager. 

One  of  the  big  advantages  of  the  C-NIC 
is  its  ability  to  offload  a  variety  of  func¬ 
tions  from  the  host  CPU,  “freeing  up  pro¬ 
cessing  cycles  and  enabling  the  server  to 
handle  other  functions,”  says  Sean  Lavey, 
a  program  manager  at  IDC.  For  example, 


Broadcom’s  C-NIC  has  a  TCP/IP  Offload 
Engine  (TOE)  that  takes  over  the  process¬ 
ing  of  TCP/IP  stacks. 

During  a  Microsoft®  benchmark  test, 
Broadcom’s  BCM5706  C-NIC,  equipped 
with  a  TOE,  had  a  throughput  of  1.8 
Gbit/sec  at  20%  CPU  utilization,  and  used 
only  3  watts  per  Gigabit.  In  comparison, 
the  same  Windows®  server  equipped 
with  an  Intel®  non-TOE  Gigabit  Ethernet 
NIC  had  about  1.5  Gbit/sec  at  95%  CPU 
utilization,  and  used  90  watts  per  Gigabit. 

Other  key  C-NIC  offloading  capabili¬ 
ties  include: 

■  Remote  Direct  Memory  Access 
(RDMA)  that  enables  servers  in  high¬ 
speed  clusters  to  write  directly  to  each 
other’s  memory,  bypassing  the  bus. 
This  eliminates  potential  bus  bottle¬ 
necks  and  boosts  performance, 
enabling  clustered  X-86-based  servers 
to  handle  applications  that  ordinarily 
require  high-end,  and  much  more 
expensive,  Unix  machines. 

■  Support  of  the  iSCSI  protocol  that 
allows  IT  professionals  to  move  block- 
level  storage  from  a  dedicated  Fibre 
Channel  SAN  onto  a  shared  converged 
IP  network. 

C-NICs,  and  other  recent  Broadcom 
offerings,  also  represent  the  leading  edge 
of  an  important  industry  trend,  in  which 
network  equipment  manufacturers  build 
their  products  with  more  “systems-on-a- 
chip”  and  fewer  custom  ASICs.  In  this 
way,  they  can  bring  new  products  to  mar¬ 
ket  faster  and  more  cheaply,  which  trans¬ 
lates  into  more  choices  and  lower  costs 
for  customers,  says  IDC’s  Lavey. 

Enterasys  used  Broadcom’s  StrataXGS 
silicon  as  a  critical  component  for  its 
Matrix  C2  line  of  layer  3  stackable  IP 
switches,  announced  in  September  2004. 
“The  intelligence  of  Broadcom’s  compo¬ 
nentry  provides  the  foundation  for  many 
security  functions,  enabling  support  for 
multimodal  systems,  predictability,  and 
integration,”  says  Roese.  By  using 
Broadcom  silicon,  with  built-in  capabili¬ 
ties  like  classification  and  policing, 
Enterasys  was  able  to  deliver  the  new 
switches  in  about  eight  months,  “more 
cheaply,  and  compromise-free,”  he  adds. 
In  contrast,  building  the  product  from 
scratch  internally,  using  custom  ASICs, 
would  have  taken  about  18  months.  The 
benefit  for  Enterasys’  customers:  “They 
get  state-of-the  art  equipment,  while  still 
keeping  up  with  the  market’s  progression 
toward  faster,  cheaper  equipment.” 
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Converged  IP  Networks  Deliver  on  QoS 


Even  as  the  cost  of  high-speed  switching  continues  to  fall, 
few  companies  can  afford  to  simply  throw  in  more  Gigabit 
Ethernet  connections  when  traffic  peaks  start  getting  chron¬ 
ic.  Network  managers  often  wind  up  doing  endless  tweaking  and 
reconfiguring  to  ensure  that  (1)  quality-of-service  (QoS)  levels  get 
met  and  traffic  continues  flowing,  and  (2)  budgets  don't  get  busted. 

This  can  be  especially  tricky  when  you're  dealing  with  a  con¬ 
verged  IP  network  that  carries  different  types  of  traffic  with  very  dif¬ 
ferent  service-level  agreements  (SLAs)  and  latency  parameters. 

Broadcom  Has  IT  in  Mind 

Fortunately,  network  managers  are  able  to  hand  over  more  and 
more  QoS  administration  tasks  to  increasingly  intelligent  network 
hardware  being  built  by  Broadcom  and  its  OEM  partners. 

"What's  more  important  [than  raw  switching  power]  is  having  an 
Ethernet  switch  intelligent  enough  to  recognize  a  string  of  voice 
packets  and  make  sure  they  are  given  priority,"  says  Seamus 
Crehan,  a  director  at  Dell'Oro  Group.  "We're  starting  to  see  that 
trend  toward  more  and  more  intelligence  in  Ethernet  switches, 
wiring  closets,  desktop  switches."  Dell'Oro  predicts  that  33%  of 
stackable  switches  will  be  layer  3  in  2004,  up  from  5%  in  2001 . 

Broadcom's  intelligent  silicon  enables  OEM  partners  to  adminis¬ 
ter  QoS  for  multimedia  applications  at  every  point  in  the  network. 
This  is  crucial,  says  John  Roese,  CTO  of  Enterasys  Networks: 
"Because  if  any  node  doesn't  know  it's  dealing  with  voice,  you  jeop¬ 
ardize  the  user  experience." 


Broadcom's  StrataXGS  chipset,  for  example,  which  is  incorporat¬ 
ed  into  Enterasys'  Matrix  C2  layer  3  IP  switch,  can  classify  packets, 
enforce  QoS  policies,  and  do  traffic  policing  and  shaping,  by  type  of 
protocol,  Roese  says.  "So  you  can  move  beyond  the  basic  VLAN 
model,  the  switch  can  look  at  the  traffic  stream  and  say,  'ah,  you're 
this  type  of  voice;  you  need  this  service  level,  this  type  of  security.'" 

The  newest  generation  of  network  switches  based  on  Broadcom 
Gigabit  Ethernet  silicon  will  be  able  to  do  much  more,  says  Ford  G. 
Tamer,  group  vice  president  of  Broadcom's  Network  Infrastructure 
Business  Group.  "The  switch  is  becoming  the  management  focal 
point.  Features  like  layer  3  switching,  packet-by-packet  security, 
authentication,  and  discovery  are  all  being  integrated  into  our  wired 
switch  silicon." 

Managing  Through  a  Single  Device 

"QoS  functions  that  used  to  be  exotic  and  proprietary  are  now  being 
built  into  network  hardware  components,"  says  Kevin  Tolly,  presi¬ 
dent  of  The  Tolly  Group.  "The  more  these  functions  become  core 
and  mainstream,  the  more  reliable  and  efficient  they  are." 

"Standardization  and  componentization  at  the  chip  level  by 
someone  like  Broadcom  allows  [enterprise  IT]  to  ensure  that  func¬ 
tions  like  QoS  are  implemented  across  the  network — not  just  on 
MPLS  routers,  but  on  every  least  link  and  low-end  device,"  Tolly 
adds.  That  makes  it  a  whole  lot  easier  to  enforce  SLAs  across  dif¬ 
ferent  media,  and  from  one  end  of  the  network  to  the  other — which 
should  make  everybody  happy. 


Not  All  Silicon  Is  Created  Equal 

All  this  is  good  news  for  corporate  decision 
makers.  But  Tolly  adds  a  caveat:  It’s  becom¬ 
ing  crucial  that  IT  executives  “look  under 
the  hood”  when  shopping  for  Gigabit 
Ethernet  equipment,  and  ask  a  few  pointed 
questions  about  the  brand,  feature  sets,  and 
configuration  of  the  underlying  chipsets — 
before  making  a  buying  decision.  One 
important  question  to  ask:  Will  it  interop¬ 
erate  with  other  types  of  equipment? 

Broadcom  has  a  three-pronged  interop¬ 
erability  strategy.  First,  it  has  been  an 
industry  leader  in  both  the  development 
and  implementation  of  key  industry  stan¬ 
dards  like  RDMA,  iSCSI,  Wi-Fi,  and  the 
IEEE  802. lx  Extensible  Authentication 
Protocol.  Second,  it  does  extensive  testing 
to  ensure  all  of  its  products  are  backward 
and  forward  interoperable,  and  can  sup¬ 
port  legacy  applications.  Finally, 
Broadcom  provides  support  for  vendor- 
and  operating  system-specific  de  facto 
standards  that  enable  networking  equip¬ 
ment  to  work  seamlessly  with  the  host 
computing  platform. 


For  example,  Broadcom  currently  pro¬ 
vides  the  only  TOE  on  a  chip  that  interfaces 
with  Microsoft’s  TCP  Chimney.  Support  of 
Chimney  enables  TCP/IP  Offload  Engines 
to  interface  directly  with  Windows,  offload¬ 
ing  TCP/IP  processing  for  all  network  traf¬ 
fic,  Broadcom’s  Light  explains.  Without  that 
operating  system  support,  a  TOE  can  only 
work  on  an  iSCSI  adapter  that  bypasses  the 
operating  system. 

How  Well  Does  It  Perform? 

IT  managers  also  need  to  check  published 
benchmark  tests  that  compare  the  per¬ 
formance  of  the  same  type  of  chip  from 
different  vendors.  eTesting  Laboratories 
found  that  Broadcom’s  NetXtreme  64-bit 
PCI-X  Gigabit  Ethernet  server  adapter 
achieved  significantly  higher  throughput 
rates  compared  with  the  Intel  Pro  1000  XT 
server  adapter. 

Network  equipment  performance 
depends  not  only  on  the  power  of  the 
underlying  silicon,  but  on  “architectural 
choices  that  chipmakers  are  increasingly 
making,”  says  Tolly.  Customers  should  ask 


questions  like:  “Do  they  support  the  latest 
industry  standards?  How  much  memory 
or  intelligence  did  they  put  on  the  chip? 
Are  tasks  like  IPSec  encryption  handled 
by  the  main  processor  or  offloaded  to  a 
subsidiary?” 

The  bottom  line,  according  to  Tolly: 
There  is  a  big  difference  between  custom 
ASICs  and  standards-based,  system-level 
semiconductors  designed  and  tested  to 
work  together  across  the  network.  “You 
can  do  enough  research  on  a  chipmakers 
products,  like  Broadcom’s,  to  get  a  pretty 
good  idea  of  what  those  silicon  solutions 
can  do  for  you,”  says  Tolly.  “Then  you  can 
ensure  good  performance  across  your  net¬ 
work  by  ensuring  that  all  your  equipment 
is  built  on  that  chipmakers  hardware.”  ■ 

Broadcom®,  StrataXGS®,  and  NetXtreme™  are 
trademarks  of  Broadcom  Corporation  and/or  its 
affiliates  in  the  United  States  and  certain  other 
countries.  Wi-Fi®  is  a  trademark  of  the  Wi-Fi 
Alliance.  Microsoft®  and  Windows®  are  trade¬ 
marks  of  Microsoft  Corporation.  Intel®  is  a  trade¬ 
mark  of  Intel  Corporation.  Any  other  trademarks 
or  trade  names  mentioned  are  the  property  of 
their  respective  owners. 
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Download  our  new  white  paper,  “Critical  Steps 
for  Successful  VoIP  Deployment,”  today  at 

www.gobroadcom.comA/olP 


'  :'5*si 
..  fSlRiRgri 


LOOK  WITHIN  — 
YOUR  NETWORK  IS  MORE 
POWERFUL  THAN  YOU  REALIZE 
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To  engage  the  immense  power  of  IP  convergence  —  data,  voice,  applications,  networks  —  the  underlying  technology 


must  function  securely,  reliably  and  efficiently.  Only  Broadcom®  offers  end-to-end  networking  chips  with  the  built-in 
power  to  manage  convergence  —  from  core  storage  and  servers,  through  switch  fabrics  to  desktops,  multi-functional 
devices  and  beyond.  Broadcom’s  wired  and  wireless  technology  throughout  the  network  reduces  complexity  and 
enhances  the  end-user  experience.  With  Broadcom,  there  is  no  gap  between  legacy  and  future  technologies  —  only 
seamless  communication  at  maximum  speed.  Technology  advances.  Networks  expand.  Control  is  maintained. 


Broadcom,*  the  pulse  logo,  Connecting  everything,’  and  the  Connecting  everything  logo  are  trademarks  of  Broadcom  Corporation  and/or  its  subsidiaries  m  the  United  States  and  certain  other  countries.  All  other  trademarks  are  the  property  of  their  respective  owners. 
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A  warning  about  future  telecom  ‘reform? 


NET 

INSIDER 

Scott 

Bnadner 


There  is  an  almost  universal  feeling 
that  U.S.  telecommunications  laws 
and  regulations  are  way  out  of  step 
vith  current  telecom  reality  The  basic  law 
/vas  passed  in  1934  and  updated  by  the 
telecommunications  Act  of  1996,  which  is 
;ons  (or  longer)  ago  when  it  comes  to  tele- 
:om  technology. 

No  one  1  know  is  looking  forward  to  the 
jrospect  of  Congress,  outnumbered  as  it  is 
yy  lobbyists,  trying  to  “fix”  the  current  mess, 
f  anyone  did  have  any  hope  that  such  a 
process  might  result  in  a  positive  outcome, 
•ecent  events  in  Pennsylvania  will  have 
extinguished  them. 

After  more  than  a  year  and  a  half  of  try- 
ng,  the  Pennsylvania  legislature  recently 
massed  House  Bill  30  (see  www.nwfusion. 
:om,  DocFinder:  4935),  which  updates  the 


existing  state  telecom  regulations.  This  bill 
got  a  lot  of  press  in  mid-November 
because  of  a  provision  added  late  in  the 
game  that  prohibits  municipalities  from 
offering  “any  telecommunications  services, 
including  advanced  and  broadband  ser¬ 
vices”  for  a  fee  without  basically  getting  the 
permission  of  the  local  monopoly  tele¬ 
phone  company 

It’s  probably  not  a  coincidence  that  this 
provision  showed  up  around  the  time  that 
Philadelphia  announced  a  plan  to  offer 
inexpensive,  citywide,  Wi-Fi-based  Internet 
service.This  provision  was  clearly  added  to 
protect  local  monopoly  telephone  compa¬ 
nies  such  as  Verizon  from  municipal-based 
competition.  Under  the  provision,  Verizon 
could  block  any  future  deployment  of 
municipal-run  networks  by  saying  that  it 
was  going  to  offer  similar  speed  Internet 
services  in  the  same  area.  That  would  be 
the  case  even  if  Verizon’s  services  were  not 
going  to  be  available  for  years  or  were 
going  to  cost  a  hundred  times  what  the 
municipal-run  network  was  going  to 
charge. 


This  provision  almost  perfectly  symbol¬ 
izes  the  entire  bill. 

The  bill  starts  out  with  a  bunch  of  good 
sounding  platitudes  describing  how  it  aims 
to  ensure  that  Pennsylvania  will  get  the 
best  telecom  services  that  Verizon  decides 
it  wants  to  deliver. 

Oops,  that’s  a  bit  sarcastic,  but  that’s  how  I 
felt  when  I  read  this  bill. Telecom  bills  like 
this  are  ostensibly  for  the  good  of  the  pub¬ 
lic  but  in  actuality  mostly  benefit  two 
monopolies:  the  regional  telephone  com¬ 
pany  and  the  utility  regulators.There  is  very 
little  in  this  bill  that  will  benefit  the  ordi¬ 
nary  citizens  of  Pennsylvania.  They  will  get 
higher  prices  and  little  innovation. 

The  bill  includes  some  bribes  to  get  spe¬ 
cific  groups  to  support  it.  For  example,  it 
establishes  an  educational  technology 
fund  (the  e-fund)  to  support  things  that 
educators  like.  The  level  and  passion  of 
support  from  some  people  in  the  educa¬ 
tional  community  for  the  bill  shows  that 
this  type  of  payoff  works.  Of  course  the 
money  has  to  come  from  somewhere  and 
it  will  come  from  higher  phone  costs  for 


the  residents  of  Pennsylvania.  In  other 
words,  the  e-fund  and  other  similar  goodies 
in  the  bill  are  supported  by  yet  another  tax 
on  telephone  users. 

What  is  missing  is  any  hint  that  the  best 
way  to  get  innovation  and  lower  prices 
would  be  to  encourage  competition  for 
basic  phone  service.  But  that  would  threat¬ 
en  both  of  the  bill’s  main  beneficiaries. 

This  bill  is  the  result  of  a  perfect  storm  of 
telecom  regulators  and  big  telecom  lobby¬ 
ists.  But  this  storm  is  a  local  squall  in  com¬ 
parison  with  the  Category  4  hurricane  that 
will  spring  up  when  Congress  starts  to 
revamp  federal  telecom  law.  It  will  be  very 
ugly  and  you  can  be  sure  the  beneficiaries 
will  not  be  you  and  me. 

Disclaimer:  Studies  show  that  Harvard 
brings  big  benefits  to  the  community,  but 
not  all  of  the  community  agrees.  In  any 
case  the  above  discussion  of  benefits  is  my 
own  opinion  and  not  the  university’s. 

Brndner  is  a  consultant  with  Haward 
University’s  University  Information  Systems. 
He  can  be  reached  at  sob@sobco.com. 


Opalis  looks  to  automate 
repetitive  tasks 


rivoli 

continued  from  page  31 

On  one  hand, being  part  of  IBM  does  pro- 
ride  its  benefits.  For  one,  vendors  such  as 
lisco  are  willing  to  co-develop  products, 
ind  a  pool  of  new  customers  will  be  made 
ivailable  to  Tivoli  salespeople.  Despite 
ough  competition,  Tivoli  executives  are 
jetting  their  affiliation  with  IBM  will  knock 
down  any  unopened  doors. 

“One  of  our  core  strengths  as  a  business 
s  that  we  can  rely  on  the  rest  of  IBM.  If 
Hvoli  makes  a  statement,  it’s  not  just  Tivoli, 
t’s  an  IBM  technology  initiative,”  Madey 
;ays.“That  carries  weight.” 

On  the  other  hand,  Tivoli  faces  potential 
extinction  as  a  distinct  product  within  IBM. 
\s  competitor  HP  pulls  its  Open  View  man¬ 
agement  software  into  the  forefront  of  HP’s 
\daptive  Enterprise  strategy  —  which  com¬ 
petes  neck-and-neck  with  IBM’s  On 
Demand  Business  plans  —  IBM  keeps 
Hvoli  in  the  background.  While  Big  Blue 
plans  to  make  Tivoli  a  core  component  of 
:he  company’s  underlying  infrastructure 
across  software  brands,  it’s  unlikely  cus- 
;omers  could  recognize  the  management 
technology  within  larger  software  pack¬ 
ages  IBM  delivers. 

“Tivoli  is  now  just  another  product  at 
IBM,” says  Jasmine  Noel,  a  principal  at  Ptak, 
Noel  &  Associates.The  value  in  that  is  they 
can  potentially  sell  to  more  customers,  but 
the  danger  is  that  their  software  could 
become  shelf-ware  as  part  of  a  larger  IBM 
bundle  unless  IBM  plays  it  up.” 

Noel  argues  that  IBM  will  have  to  work  a 
bit  harcnr  than,  say,  HP  to  make  its  man¬ 
agement  -  >ftware  prowess  known.“HP  has 
OpenVievv  ime  recognition  among  net¬ 
work  nanai.  s.  Tivoli  never  got  that  wide- 

ITpread  recog)  >°n- but  il  does  have  IBM  to 
make  .self  kn<  n,”  Noel  says. 


■ 

PROFILE: 

Tivoli 

Location: 

Austin, Texas 

Founded: 

1989;  acquired  by  IBM  in  1996 

Business: 

IT  service  management 
software  and  services; 
application,  security, 
storage,  performance  and 
availability,  and  con¬ 
figuration  and  operations 
management  software. 

Employees: 

4,500  worldwide  (Tivoli 
employees  only) 

Tivoli- 
related  IBM 
acquisitions 
in  2004: 

•April  2004:  Candle 
(mainframe  systems 
management  software) 

•  July  2004:  Cyanea 
Systems  (application 
monitoring  software) 

•  October  2004: 
Systemcorp  (IT 
governance  software) 

Noel  says  to  look  for  Big  Blue  to  shop  for 
change  and  configuration  management 
(CCM)  software  from  start-ups  such  as 
Collation,  mValent  and  Troux.  Competitors 
BMC  picked  up  CCM  technology  with  its 
Marimba  acquisition  and  HP  with  its 
Novadigm  purchase. 

IBM  this  year  acquired:  Cyanea  Systems 
for  application  monitoring;  sometimes 
competitor  Candle,  mostly  for  the  main¬ 
frame  customer  base;  and  Systemcorp,  a 
Montreal  company  tlfat  makes  IT  gover¬ 
nance  software.  According  to  Goldman 
Sachs,  IBM  should  continue  to  fill  technol¬ 
ogy  gaps  because  customers  are  moving 
further  away  from  point  product  purchases 
to  signing  with  one  vendor  to  meet  all  their 
management  needs.  ■ 


■  BY  JOHN  FONTANA 

Opalis  last  week  released  software  that 
will  help  customers  automate  repetitive 
tasks  associated  with  management,  back¬ 
up  and  virtualization  technology 

The  Opalis  Connector  Access  Packs  for 
OpalisRobot  let  users  lay  out  automated 
workflows  that  include  tasks  associated 
with  using  Microsoft  Operations  Manager 
(MOM),  Microsoft  System  Management 
Server  (SMS),  Remedy  HelpDesk,  VMWare 
and  Veritas  back-up  software.  Opalis  com¬ 
petes  with  product-specific  tools  such  as 
BackUpExec  from  Veritas  Software  and 
with  internally  developed  Visual  Basic 
scripts  for  automating  routine  tasks. 

For  example,  a  database  administrator 
that  has  to  shut  down  a  server  to  apply 
patches  using  the  software  distribution  fea¬ 
tures  of  SMS  can  build  some  of  the  basic 
manual  steps  to  configure  SMS  and  exe¬ 
cute  services  into  an  automated  process 
using  the  drag-and-drop  interface  of 
OpalisRobot. The  Opalis  software  then  will 
execute  those  SMS  steps. 

“This  is  allowing  us  to  really  do  a  lot  of 
the  day-to-day  mundane  stuff  and  avoid 
having  problems  where  administrators  are 
paged  at  three  in  the  morning, ’’says  Damon 
Howell,  network  systems  engineer  at  Blue 
Cross  Blue  Shield  of  Nebraska.  Howell  uses 
the  Opalis  connector  for  MOM  to  flag 
servers  that  are  offline  for  maintenance  so 
that  administrators  don’t  have  to  go  into 
MOM  and  do  it  themselves. 

“We  have  so  many  people  that  have 
authority  to  shut  down  a  server  that  it  is 


impossible  to  train  them  all  on  MOM," 
Howell  says.  Instead,  he  set  up  a  process  in 
Opalis  that  monitors  a  mailbox.  Admini¬ 
strators  that  take  a  server  offline  first  send 
an  e-mail  to  that  mailbox  with  the  server’s 
name.  Opalis  picks  up  the  message  and 
runs  a  process  that  activates  MOM,  which 
in  turn  moves  the  server  onto  its  list  of 
servers  that  are  in  maintenance  mode, 
which  prevents  any  error  messages. 

Howell  says  the  goal  is  to  reduce  the 
amount  of  repetitive  management  tasks 
that  must  now  be  done  by  the  staff. 

The  other  connectors  Opalis  offers  pro¬ 
vide  access  to  similar  automation  such  as 
registering  a  new  virtual  image  or  starting 
or  stopping  a  virtual  image  in  VMWare.The 
Veritas  connector  verifies  that  processes 
are  started  and  stopped  correctly  and  the 
Remedy  connector  works  with  various 
steps  in  opening,  managing  and  closing 
trouble  tickets. 

“We’re  not  trying  to  paint  a  panacea  that 
everything  will  be  managed  through  soft¬ 
ware, we  are  realistic,” says  Keith  Millar, vice 
president  at  Opalis.  “But  there  are  certain 
tasks  that  fall  into  this  well-known  pre¬ 
dictable  area  that  can  be  automated  and 
relieve  the  burden  on  humans  to  some 
degree.  It  is  capture  and  execute,  capture 
the  manual  process  and  execute  it  and  get 
it  off  the  to-do  list.” 

OpalisRobot  runs  on  Windows  Server 
2000  and  2003  and  costs  $10,000.  The  GUI 
client  tool  to  create  workflows  can  be  run 
from  the  server  or  a  local  workstation.  Each 
Opalis  connector  costs  $2,000;  the  entire 
pack  of  five  costs  $5,000.  ■ 
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APPLICATIONS:  Corporate  messaging. 


Messaging  wars:  lotus,  Microsoft  move  on 


S  BY  JOHN  FONTANA 

Nearly  a  decade  ago,  e-mail  was  the  killer  app  and 
vendors  IBM/Lotus  and  Microsoft  were  locked  in  a 
battle  to  prove  which  was  best  at  delivering  mes¬ 
saging  to  a  corporate  world  hungry  for  online  communi¬ 
cation. 

The  winner?  Both.  Each  scored  victories  that  have  set 
them  up  today  as  the  kingpins  of  computer-based  com¬ 
munication  and  collaboration, says  Eric  Arnum,  a  front¬ 
line  correspondent  during  those  messaging  wars  with 
his  now-defunct  Electronic  Mail  and  Messaging  print 
publication  and  “Messaging  Online”  newsletter,  which 
chronicled  the  battle  from  the  trenches. 

“1  always  felt  that  when  Lotus  and  Microsoft  executives 
got  up  to  say  it  was  a  two-horse  race,  that  indeed  was 
their  goal  —  to  portray  it  as  a  two-horse  race,”  Arnum 
says.“ln  that  respect,  they  both  won,  they  got  what  they 
wanted,  which  was  rough  parity 
Today,  the  messaging  wars  that  dominated  the  mid-  to 
late  1990s,  including  tabulations  of  which  company  had 
the  most  licensed  users  and  the  best  implementations  of 
the  latest  Internet  protocols,  have  disappeared  into  a 
mature  market  where  IBM/Lotus  and  Microsoft  hold  near¬ 
ly  60%  of  the  users,  according  to  the  Radicati  Group. 

However,  the  fallout  lives  with  IT  administrators  whose 
unending  job  now  is  to  manage  e-mail,  store  it,  archive  it 
and  protect  it  from  spam  and  viruses  (see  graphic). 

IBM/Lotus  and  Microsoft  have  expanded  the  battle 
into  full-on  collaboration  and  real-time  communications 
suites  made  up  of  components  that  include  not  only 
e-mail  but  also  instant  messaging,  voice  and  videocon¬ 
ferencing,  online  work  rooms  and  access  to  mountains 
of  indexed  digital  data. 

IBM/Lotus  is  pushing  ahead  with  a  next-generation 
platform  called  IBM/Lotus  Workplace,  a  Java  2  Platform 
Enterprise  Edition  (J2EE)-based  collection  of  messaging 
and  collaboration  components,  such  as  teamware  and 

I  k  They  both  won,  they  got  what 
they  wanted,  which  was  rough 

parity.  9  9 

Eric  Arnum 

Journalist 

document  management,  which  Gartner  predicts  is  the 
c-  ontual  replacement  for  Notes/Domino. 

Microsoft  has  slung  all  the  collaboration  advance- 
omms  it  failed  to  develop  on  the  back  of  Exchange  onto 
tine  mighty  shoulders  of  its  Office  franchise.The  “Office 
System”  includes  the  corporate  standard  Outlook  client, 
as  well  as  SharePoint  Portal  Server  2003  and  Windows 
ShareFbint  Sendees  2003  for  information  sharing  and 
collaboration,  Live  Communications  Server  2005  for 
distant  messaging  and  presence,  and  the  Live 
Meetingonline  Web  conferencing  service. 

“The  advantage  we  have  is  that  no  one  can  beat  the 
integration  we  offer  with  Office,”  says  Kim  Akers, senior 


Taming  e-mail 

The  Meta  Group  recently  released  a  list  of  the 
Top  10  e-mail  manager  concerns  now  that  the 
technology  has  matured  and  become  a 
corporate  staple. 

• 

Spam  (by  a  wide  margin). 

• 

Storage  (user  quotas,  archiving,  compression, 
SANs). 

• 

End-user  overload  (too  much  clutter  in  the  in-box). 

.  • 

Legal  compliance  and  records  management. 

• 

Perimeter  security  and  message  hygiene 

(includes  virus). 

• 

System  upgrades  (how  much,  why  and  when?). 

• 

System  stability  and  recoverability. 

'  • 

E-mail  economics  (what  does  it  cost,  how  to  save 
money?). 

• 

Appropriate  architecture  (centralized  vs.  hybrid 
vs.  decentralized). 

•  ' 

h _ _ 

Remote  access  (browser  and  PDA  connectivity). 

_ _ _ _ _ _ _ _ _ 

director  for  Exchange. 

The  jury  is  still  out  on  this  new  fight. 

Experts  say  IBM  is  balancing  a  nervous  user  base  that 
thinks  Notes/Domino  will  eventually  go  away  even 
though  the  company  is  preaching  an  integration 
approach  and  plans  to  ship  Version  7.0  next  year  and 
follow  it  up  with  Versions  7.5  and  8.0,  which  would  push 
support  for  the  platform  into  2009.  Last  month,  IBM 
announced  17  Workplace  templates  that  mold  the  tech¬ 
nology  to  specific  industries  and  Workplace  Express  2.0 
for  small  and  midsize  businesses. 

“The  point  is  that  Workplace  is  an  additive  model,” says 
Ken  Bisconti,vice  president  for  Lotus  Workplace  products. 
“We  are  adding  a  new  data  store  option,  but  we  are  not 
taking  away  the  [Domino  Notes  Storage  Format]  store. 
We’re  not  taking  away  the  traditional  application  frame¬ 
work  but  adding  a  broader  Eclipse  programming  model.” 

Users  say  that  reality  is  coming  into  focus. 

“We  can  embrace  J2EE  and  still  have  Notes  applica¬ 
tions,”  says  Bruce  Elgort,  manager  of  information  ser¬ 
vices  for  Sharp  Microelectronics  of  the  Americas  in 
Camas,  Wash. “But  there  is  a  whole  new  platform  out 
there  and  IBM  is  building  upon  the  success  of  Web¬ 
Sphere;  why  wouldn’t  you?  How  far  are  you  going  to 
beat  Notes  and  Domino  into  the  ground?” 

But  analysts  say  the  Notes/Domino  and  Workplace 
plans  baffle  users. 

“They  are  trying  to  deliver  multiple  [overlapping]  mes¬ 
sages,”  says  Tom  Austin,  a  group  vice  president  at 
Gartner.“Message  No.  1  is  ‘don’t  worry, you  can  stay  with 
Notes  and  Domino  forever’  and  customers  don’t  believe 
that;  and  with  good  reason.” 

A  controversial  report  issued  by  the  Radicati  Group 
earlier  this  year  predicted  Lotus  will  lose  7%  of  the  cor¬ 
porate  messaging  market  in  the  next  three  years  be¬ 
cause  of  its  confusing  Workplace  strategy,  going  from 


24%  to  17%,  while  Microsoft  will  jump  from  31%  to  33%. 

“The  Domino  install  base  tends  to  be  somewhat  con¬ 
cerned  about  the  notion  of  moving  over  to  Workplace,” 
says  Meta  Group’s  Matt  Cain.“It  is  not  unusual  to  at  least 
contemplate  a  migration  to  Exchange  and/or  look  for 
some  commodity  back-end  [e-mail  server].” 

The  picture  isn’t  much  clearer  for  Microsoft,  which  still 
has  32%  of  its  user  base  on  Exchange  5.5,  according  to 
Radicati.  And  most  are  running  on  Windows  NT  for 
which  support  ends  this  month. 

“They  are  very  exposed  with  the  5.5  install  base,” says 
Sara  Radicati,  president  of  the  Radicati  Group.“Microsoft 
has  to  be  somewhat  careful  of  the  [vendors]  on  the  low 
end  of  the  market  because  messaging  has  become 
more  and  more  commoditized. The  other  challenge  is 
security,  basically  the  spam  and  viruses.” 

Another  challenge  is  presenting  an  attractive  migration 
model  for  Domino  shops.“They  have  been  lacking 
there,”  Cain  says. 

Microsoft’s  messaging  road  map  is  foggy  at  best.The 
follow-on  to  last  year’s  release  of  Exchange  2003,  which 
was  previously  called  Kodiak  and  was  to  introduce  a 
new  SQL  Server-based  data  store,  is  off  the  road  map  for 
now,  according  to  Microsoft  officials.  Also  gone  is  a 
security  option  called  Exchange  Edge  Services  that  was 
slated  to  ship  next  year  but  is  now  in  limbo. The  stand¬ 
alone  message  transfer  agent  was  designed  for  the  edge 
of  networks  to  secure  the  flow  of  e-mail  to  and  from  the 
Internet.  It  also  will  become  a  hub  to  plug  in  third-party 
security  software  and  Microsoft’s  Intelligent  Message 
Filter  for  spam. 

Microsoft’s  lack  of  a  product  road  map  might  be  tied 
to  a  lack  of  understanding  of  end-user  needs,  Gartner’s 
Austin  says. 

“Microsoft  is  still  at  the  bits  and  bytes  level  and  still 
worried  about  adding  new  features  and  new  architec¬ 
tural  integrity”  Austin  says.“They  haven’t  figured  out  how 
all  this  fits  into  either  empowering  end  users,  which  has 
fallen  off  the  radar  screen  for  Microsoft,  or  how  it  fits 
into  solving  real  business  problems.” 

What  is  clear  is  that  the  rivals  are  locked  into  another 
battle,  this  one  much  broader  with  the  inclusion  of  col¬ 
laboration  and  real-time  communication. 

“It  is  a  different  battle  with  a  different  set  of  leverage 
points  and  a  space  with  a  lot  of  other  competitors,”  says 
Ed  Brill,  a  longtime  Lotus  employee  and  business  unit 
executive  for  worldwide  sales  at  IBM/Lotus.“It  does  have 
echoes  of  the  past,  but  it  doesn’t  have  the  same  urgency, 
which  is  not  to  say  we  are  not  putting  in  a  lot  of  effort.” 

Then  Brill,  a  veteran  of  the  battle  with  Microsoft,  fires 
off  another  round. “Maybe  that’s  why  Microsoft  has  been 
able  to  move  away  from  Exchange  as  a  platform  for 
collaboration.”  ■ 

More  online! 

Listen  to  highlights  from  Mark  Gibbs'  presen¬ 
tation  on  strategies  for  creating  a  messaging 
environment  that  ensures  network  integrity, 
user  productivity  and  returns  power  and 
control  to  enterprise  network  managers. 
DocFinder:  1543 
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802. 1  Ig  Wireless  Access  Point 


•-PROSAFE 
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Part  ofNETGEAR's  standards-based  family 
of  ProSafe  products,  the  WG302  delivers 
the  interoperability,  investment  protection, 
and  scalability  that  wirelessly  connects  all 
business. . .  all  of  the  time. 


BUSINESS  WIRELESS 

-  ACCESS  POINTS 

-  ANTENNAS  &  ACCESSORIES 
-ADAPTERS 

SWITCHES 

SECURITY 


All  Business. .  .All  of  the  Time 


NETGEAR®'s  ProSafe™  802.1  Ig  Wireless  Access  Point  WG302 
sets  the  new  standard  for  security  and  scalability 


NETGEAR's  ProSafe  802.1 1  g  Wireless  Access  Point  WG302  delivers  the  secure,  reliable,  high  performance  wireless  local 
area  networks  (WLANs)  today's  mobile  workforce  demands.  With  its  robust  security  measures,  simplified  management 
and  configuration,  extended  range,  integrated  IEEE  802.3af  Power  over  Ethernet  (PoE),  and  Wi-Fi  certification,  the 
WG302  brings  standards-based  enterprise-level  functionality  at  a  mid-market  price.  Fully  compatible  with  IEEE 
802.1 1  g  and  WPA  /  802.1 1  i  -  ready  functionality,  it  can  also  be  set  for  dynamic  1 08  Mbps  802.1 1  g.  And,  with  Propagate 
Networks'  AutoCell™  RF  management  technology,  the  WG302  offers  dynamic  Tx  power  control  and  automatic  channel 
selection  to  automatically  tune  and  balance  signals  across  the  network,  thus  minimizing  channel  interference  and 
maximizing  performance.  An  optional  Enhanced  RF  Privacy  mode  offers  another  level  of  perimeter  security.  To  learn 
more  about  NETGEAR's  ProSafe  WG302  with  AutoCell  technology,  visit  www.netgear.com/go/euwg302 


utoCell, 

ENABLED 


AutoCeli-enabled  WLAN  networks  deliver  maximum 
performance  up  to  four  times  greater  than  Wi-Fi 
networks  without  AutoCell,  according  to  performance 
tests  conducted  by  The  Tolly  Group®,  Inc.,  in  August  2004. 


©2004  NETGEAR,  Inc.  NETGEAR  is  a  registered  trademark  and  "Everybody's  connecting."  is  a  trademark 
of  NETGEAR,  Inc.  All  rights  reserved.  Other  brands  and  products  are  trademarks  of  their  respective 
holders.  Specifications  subject  to  change  without  notice. 
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No  longer  do  you  have  to  be  a  professional 
web  designer  to  have  a  professional 
website.  1&1  lets  you  choose  from  three 
quick  and  easy  solutions  so  you  can 
establish  your  ideal  online  presence  - 
without  the  need  for  any  programming 
experience!  Create  a  sophisticated  HTML 
site  without  any  HTML  skills.  Or  let  the 
new,  innovative  1&1  Interactive  Tools 
help  you  buiid  an  intriguing  site  with 
flash  animation  or  even  generate  web 
pages  right  from  a  PDF  brochure!  And 
best  of  all,  these  tools  are  included  at 
no  additional  cost  with  all  1&1  Shared 
Hosting  Packages. 


Easily  buiid  your  ultimate 
website  -  without  any 
programming  knowledge! 


NO  PROGRAMMING  SKILLS  NEEDED! 


DynamicSiteCreator 

Let  animation  take  your  site  from  the  ordinary 
two-dimensional  into  the  extraordinary  world  of 
three-dimensional  interaction.  And  now  with  the 
sensational  new  DynamicSiteCreator  from  1&1, 
building  flash  sites  is  simple  -  at  last!  Easily 
create  an  intriguing  flash  site  in  minutes. 


feprcber  of 


PDF2Web  Converter 

Do  you  wish  you  could  turn  your  PDF  brochure 
into  a  fully  functioning  website?  Now  you  can 
with  the  new  PDF2Web  Converter  from  1&1. 
Novices  and  advanced  users  alike  can  quickly  and 
easily  convert  PDF  files  into  professional-quality 
web  pages  with  just  a  few  clicks  of  the  mouse! 


WebsiteCreator 

Choose  from  120  professionally  designed  tem¬ 
plates  and  build  an  HTML  website  without  any 
HTML  knowledge!  And  with  the  5-step  wizard, 
your  site  can  be  online  in  just  20  minutes.  Best 
of  all,  website  management  is  a  breeze  -  edit 
and  update  your  site  as  often  as  you  like. 


1.877.G01AND1 


TE  LIKE  A  PRO! 
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1&1  has  even  more  to  offer: 


REGISTER  DOMAINS: 

.COM,  . 
.INFO,  . 

NET,  .ORG, 
NAME,  .US 

$C99 

PER  YEAR 

^is 


BUSINESS  PACKAGE 


FROM 


PER 

MONTH 


INCLUDES  3  DOMAINS 


A  £*L_ 


PACKAGE  FEATURES 

■  Web  space 

2,000  MB 

2,000  MB 

■  FTP  accounts 

5 

5 

■  Monthly  Transfer  Volume 

50  GB 

50  GB 

■  1  &1  Control  Panel 

/ 

✓ 

■  Logfiles 

/ 

MARKETING  TOOLS 

■  Chat  channels 

5 

5 

■  1&1  WebStatistics 

/ 

/ 

■  In2site  Live  Dialoque 

/ 

/ 

■  1&1  Newsletter  Tool 

/ 

/ 

■  1&1  WebElements 

/ 

/ 

SITE-BUILDING  TOOLS 

2  PDF2Web  Converter 

/ 

/ 

5  DynamicSiteCreator 

/ 

/ 

5  Graphic  archive 

/ 

/ 

■  WebsiteCreator 

1 8  paqes 

18  pages 

■  Software  suite  worth  $600 

/ 

/ 

■  FrontPaqe  extensions 

/ 

y 

■  CGI  library 

/ 

y 

■  Active  Server  Paqes 

- 

V 

■  ASP.NET,  .NET  Framework 

- 

y 

■  Perl,  PHP3,  PHP4,  and  PHP5 

/ 

- 

■  1&1  WebDatabase 

/ 

y 

■  Database 

1  MySQL 

MS  Access 

■  Cron  Jobs 

/ 

- 

■  SSI  (Server  side  includes) 

/ 

/ 

DOMAIN  NAMES 

•  :  s  •  ..V-S 

■  Included  Domains 

3 

3 

■  Subdomains 

50 

50 

■  Run  multiple  independent  sites 

/ 

✓ 

■  Full  DNS  management 

/ 

E-MAIL 

■  E-mail  accounts  with  1  GB  space  each 

500 

•  v  1 

■  Aliases,  auto-responders,  forwardinq 

✓ 

■  1&1  WebMail 

/ 

./  1 

■  Spam  filterinq  for  all  accounts 

/ 

J 

■  Virus  Protection  for  all  accounts 

✓ 

/ 

SECURITY  FEATURES  I  s 

■  Protected  by  up-to-date  firewall 

.  y  .  i _ / _ 1 

■  Daily  backups 

I  y. 

L _ _ 

■  Password  protected  directories 

/ 

:  _ 

■  SSH  Secure  Shell  Access 

L. .  Z _ 

l 

■  Dedicated  SSL  Certificate 

optional 

optional 

Linux  packages  PER  MONTH 

$1 2s9 

Microsoft  packages 


i/ 


1&1  MAIL 

ALL- 

INCLUSIVE  WEB 
HOSTING 

TURNKEY 

eSHOPS 

DEDICATED 

SERVERS 

FROM 

*01* 

MONTH 

FROM 

SA99 

per 

•  MONTH 

FROM 

5Q99 

^  PER 

MONTH 

FROM 

* 49 - 

m  MONTH 

Prices  and  features  valid  as  of  November  15,  2004  and  subject  to  change.  Please  see  1and1.com  for  current  packages. 


FOR  MORE  DETAILS  GO  TO  1AND1.COM 


SECURE' 

COMPUTING 


We  triple-dog-dare  you. 


Trojans,  worms,  viruses,  and  application  attacks  don't  scare  the 
all-in-one  Sidewinder  G2 "  Security  Appliance.  It  scares  them! 

It  detects  and  stops  them.  It  protects  thousands  of  networks  all 
over  the  world  and  it  can  protect  yours.  It  includes  the  world's 
strongest  application-layer  firewall  that  has  never  been  compro¬ 
mised.  You  can  even  add  optional  anti-virus,  anti-spam,  e-mail 
and  Web  content  filtering,  SSL  VPN,  and  more. 


For  a  free  evaluation,  call  1  800  379-4944. 


COMMON  CRITERIA 

EAL4  +  CERTIFIED 


New  security  whitepaper  available:  Looking  for  in-depth  knowledge  to  help 
protect  your  organization's  Internet-connected  applications  and  services  from 
hacker  attacks  and  malicious  code? To  learn  more  about  effective  protection 
mechanisms,  deep  packet  inspection,  intrusion  prevention  and  more,  down¬ 
load  our  new  security  whitepaper.  Written  for  busy  IT  professionals,  it  offers 
three  simple  ways  to  evaluate  emerging  application  gateway  technologies. 
Download  your  copy  now  at  www.securecomputing.com/goto/ad. 

Securing  the  connections  between  people,  applications,  and  networks  m 


SIDEWINDER 

SECURITY  APPLIANCE 


Firewall/Security  Appliance 
Sidewinder  G2™  Security  Appliance 
Sidewinder  G2™  Enterprise  Manager 

Strong  Authentication 
SafeWord*  RemoteAccess'" 

SafeWord®  RemoteAccess,™  Cisco  compatible 
SafeWord®  PremierAccess™ 

SafeWord®  for  Check  Point 
SafeWord®  for  Citrix*  MetaFrame® 

SafeWord®  for  Nortel  Networks 

Web  Filtering 

SmartFilter,®  Sentian,™  Bess® 

www.securecomputing.com 


Juniper  connects  high-end  routers 

TX  Matrix  interconnects  T-series  routers,  but  at  half  the  previously  stated  capacity. 


■  Wireless  service  provider  Alltel 
announced  last  week  that  it  is  acquir¬ 
ing  spectrum  licenses,  network  equip¬ 
ment  and  subscribers  from  Cingular 
Wireless  for  $170  million.  Alltel  is  the 
sixth-largest  wireless  provider  in  the 
U.S.  Federal  regulators  required  Cing¬ 
ular  to  divest  certain  AT &T  Wireless 
assets  to  receive  approval  for  the 
merger.  The  deal  closed  in  late  Octo¬ 
ber.  Alltel  is  buying  licenses,  gear  and 
customer  accounts  in  Fulton,  Ky.; 
Grant,  Okla.;  Jack,  Texas;  Litchfield, 
Conn.;  Oklahoma  City,  Okla.;  Owens¬ 
boro,  Ky.;  Sherman-Denison,  Texas; 
and  Yalobusha,  Miss.  Alltel  also  is  buy¬ 
ing  spectrum  only  in  Wichita,  Kan., 
and  a  number  of  counties  in  Georgia 
and  Texas.  The  deal  is  subject  to 
regulatory  approval  and  is  expected 
to  close  in  the  first  quarter. 

■  Amedia  Networks,  a  provider  of 
Ethernet-switched  optical  network 
products,  recently  announced  that  it 
has  entered  into  a  non-exclusive  co- 
marketing  agreement  with  metropol¬ 
itan  Ethernet  router  vendor  River¬ 
stone  Networks.  Under  the  agree¬ 
ment,  the  two  companies  plan  to  in¬ 
tegrate  Riverstone's  core  Ethernet 
switches  with  Amedia’s  QoStream 
AS5000  Aggregator  Switch  and  the 
QoStream  PG1000  Premises  Gate¬ 
way.  Amedia  expects  its  initial 
QoStream  products  will  become 
available  for  product  testing  and 
commercial  release  by  Dec.  31. 
Amedia  was  formed  from  ESON 
development  work  undertaken  by 
Lucent  and  Bell  Labs.  Lucent  re¬ 
cently  announced  an  agreement  to 
resell  Riverstone's  Ethernet  routers. 

■  Cingular  Wireless  plans  to  offer 
3G  mobile  data  service  in  many 
major  U.S.  urban  and  suburban  mar¬ 
kets  next  year  and  in  most  major 
U.S.  markets  by  the  end  of  2006,  the 
company  announced  last  week.  The 
service,  using  Universal  Mobile 
Telecommunications  System  tech¬ 
nology  with  Fligh  Speed  Downlink 
Packet  Access,  will  deliver  average 
data  speeds  between  400K  and  700K 
bit/sec. 


■  BY  JIM  DUFFY 

Juniper  last  week  launched  a  switching 
matrix  for  interconnecting  multiple  high- 
end  carrier  routers  into  a  multiterabit- 
capable  system  designed  to  accommo¬ 
date  more  service  subscribers. 

Juniper’s  TX  Matrix,  which  was  first  intro¬ 
duced  more  than  two  years  ago  along  with 
the  company’s  T-series  core  routers,  raises 
the  stakes  once  again  in  this  hotly  con¬ 
tested  market.  Juniper  made  significant 
market-share  gains  at  Cisco’s  expense  in 
the  third  quarter,  despite  the  introduction 
of  Cisco’s  ultra-high-end  and  highly  antici¬ 
pated  CRS-1  core  router  in  May 

Although  the  systems  are  sold  to  carriers 
and  services  providers,  core  routers  are 


meaningful  to  enterprise  customers  in 
terms  of  enabling  service-level  guarantees. 
Interconnecting  core  routers  enables  scale 
and  higher  performance,  which  lets  service 
providers  accommodate  more  subscribers 
and  help  ensure  service  availability 

“By  increasing  the  size  of  the  core,  it 
would  give  [service  providers]  more  over¬ 
head  to  be  able  to  offer  more  services 
with  a  known  guarantee,” says  Jeff  Ogle,  an 
analyst  at  Current  Analysis.  “For  the  enter¬ 
prise,  you  know  you’d  be  safe  to  turn  on 
filtering  or  other  security  features  without 
grossly  eating  into  the  throughput  of  your 
core  backbone.” 

The  TX  is  a  five-slot  chassis  that  fits  into  a 
19-inch  telco  rack.  It  holds  modules  that 
each  support  four  optical  interconnec¬ 


tions  to  a  single  T640  router  for  data  and 
control  plane  redundancy 

Each  TX  requires  five  optical  connec¬ 
tions  to  a  T640.  The  matrix  can  therefore 
connect  four  T640s  at  2.5T  bit/sec  and  3 
billion  packet/sec  forwarding,  which  is 
half  the  capacity  Juniper  first  quoted  for 
the  system  when  it  was  introduced  — 
eight  T640s  at  5T  bit/sec.  Juniper  now  says 
eight  T640s  at  5T  bit/sec  was  at  the 
extreme  end  of  its  expectations  and  that  a 
single  TX  eventually  will  support  more 
than  eight  T640s. 

As  an  indication  of  its  potential,  T-series 
product  manager  Tom  Jacobs  says  oneTX 
now  can  support  64  T-series  packet¬ 
forwarding  engines  (PFE).  Juniper  has 

See  Juniper,  page  42 


DoS  responsibilities  seen  widening 


Financial  losses  caused  by  denial-of- 
service  attacks  stand  second  only  to 
the  toll  caused  by  viruses,  according 
to  a  recent  study  by  the  Computer 
Security  Institute  and  the  FBI.  Net¬ 
work  World  Senior  Editor  Denise 
Pappalardo  recently  spoke  with 
Thomas  Arthur,  CEO  of  Arbor  Net¬ 
works,  about  DoS  attacks  and 
whether  service  providers  and  their 
customers  are  doing  enough  to  protect  their  networks. 
Arbor's  PeakFlow  SP  product,  a  traffic  and  routing 
management  platform  that  defends  against  DoS  and 
worm  attacks,  is  deployed  by  70  service  providers 
worldwide. 


Are  DoS  attacks  getting  worse?  Are  your  customers  seeing  new 
types? 

There  are  more  attacks  and  different  types  than  ever 
before.  We  have  service  provider  customers  that  are 
actively  mitigating  and  reconfiguring  their  networks  due 
to  three  to  five  DoS  attacks  per  day  They  are  mitigating 
DoS  attacks  on  behalf  of  a  customer,  a  peering  partner  or 
because  they  are  worried  about  their  own  infrastructure. 
A  DoS  attack  threatens  all  three. . .  .What  makes  the  DoS 
problem  tricky  is  if  you  are  an  endpoint  under  attack  and 
your  uplink  is  flooded,  there  is  virtually  nothing  you  can 


do. You  are  dependent  on  your  service  provider  to  miti¬ 
gate  that  attack  as  far  upstream  as  they  can  get  it  or  you 
are  not  available. 

What  is  the  source  for  most  DoS  attacks? 

Who’s  doing  it  is  always  an  interesting  question. These 
attacks  are  massively  distributed. That’s  what  makes  them 
so  nasty  The  attacker,  whoever  they  are,  can  be  controlling 
thousands  of  machines  halfway  around  the  world.  One 
recent  anomaly  is  very  targeted  attacks.  There  are  those 
that  are  blackmailing  others.The  MyDoom  attack  was 
specifically  going  after  SCO  because  the  attacker  didn't 
like  the  company. 

Are  service  providers  doing  enough  to  thwart  attacks? 

They’re  really  starting  to  step  up.  Service  providers  such 
as  AT&T  are  offering  DoS  services.They  are  actively  pro¬ 
tecting  the  edge  between  themselves  and  other  service 
providers,  typically  called  private  peering  connections. 
And  now  they  are  starting  to  offer  services  to  help  cus¬ 
tomers  protect  their  transport  layer.  [Editor’s  note: Sprint 
and  MCI  also  offer  DoS  mitigation  sendees  domestically,  as 
Telus  does  internationally. ]  It’s  natural  for  the  service 
providers  to  sell  these  services  because  they  own  the 
bandwidth  and  the  upstream  area  where  mitigation 
should  be. They  also  own  the  network  where  detection 
and  trace-back  needs  to  be. 

In  the  past  carriers  have  talked  about  how  they've  been  sharing 

See  Arbor,  page  42 
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EYE  ON  THE 
CARRIERS 

Johna  Till 
Johnson 


■  often  remind  equipment  vendors  that 
to  sell  to  telcos  they  need  to  make  two 
sales:  First,  sell  the  equipment  the  car¬ 
rier  thinks  it  wants;  and  second,  sell  the 
equipment  that  the  carrier  actually  wants 
once  it  gets  around  to  figuring  out  what  its 
customers  want.  In  other  words,  carriers 
often  seem  to  be  uniquely  out  of  touch 
when  it  comes  to  understanding  market¬ 
place  needs. 

Never  has  this  been  more  true  than  in 
the  case  of  VoIP  services.  Most  of  the  IT 
executives  I’ve  spoken  with  say  they  want 
their  carriers  to  offer  more  than  just  TDM 
voice  replacement  when  it  comes  to  VoIP 
services. 

Here’s  what  IT  execs  are  looking  for  — 
and  not  getting  —  from  their  service 
providers: 


Carriers  need  to  get  a  clue  on  VoIP  services 


0  Integration  with  QoS.  One  of  the 

biggest  challenges  companies  have  when 
rolling  out  VoIP  services  lies  in  ensuring 
the  sendees  will  work  effectively  over  the 
existing  network.  Integrated  QoS  offerings 
that  guarantee  priority  for  delay-  and  jitter- 
sensitive  voice  traffic,  and  let  IT  execs  cus¬ 
tomize  prioritizations  for  other  apps, 
would  be  a  plus. 

0  Integration  with  messaging  services. 

Convergence  really  means  eradicating  the 
distinction  between  voice  and  other  types 
of  communication.  Companies  increas¬ 
ingly  are  viewing  their  e-mail,  voice  mail, 
and  instant-messaging  archives  as  facets 
of  the  same  service  —  but  carriers  seem 
to  think  of  voice  mail  as  a  stand-alone 
offering  that  has  nothing  to  do  with  the 
other  two.  An  offering  that  combined 
voice  mail,  e-mail  and  secure  1M  would 
pack  a  punch. 

#  VoIP  security  services.  You’ve  proba¬ 
bly  heard  about  the  threat  of  SPIT  — 
spam  over  IP  telephony  SPIT  goes  beyond 
simple  telemarketing,  because  the  low 
relative  cost  of  IP  telephony  could  drive 


Carriers  often  seem 
to  be  uniquely  out  of 
touch  when  it  comes 
to  understanding 
marketplace  needs. 

an  order-of-magnitude  increase  in  un¬ 
wanted  calls.  (Imagine  receiving  500 
voice  mails  from  those  guys  in  Uganda 
soliciting  money  every  morning,  and 
you’ll  get  the  picture.) 

Add  to  that  concerns  about  viruses,  priva¬ 
cy  and  the  impact  of  denial-of-service  at¬ 
tacks  on  the  voice  infrastructure,  and 
there’s  the  potential  for  a  coming  catastro¬ 
phe  in  VoIP  security  Interestingly  carriers 
have  the  upper  hand  when  it  comes  to 
tackling  many  of  these  issues  —  if  only 
they’d  create  offerings  that  play  to  that 
strength. 


0  Integrated  company-wide  offerings  are 
important.  IT  executives  don’t  want  to 
have  to  deal  with  multiple  individual  car¬ 
riers.  “BellSouth  has  a  great  offering  for 
Nashville,  as  does  SBC  in  Chicago.  But  if  I 
have  to  deal  with  five  vendors  to  provide 
IP  Centrex,  it’s  going  to  be  a  mess,”  says  a 
telecom  manager  for  a  manufacturing 
firm.  “It  has  to  be  a  national  carrier  to 
make  it  worthwhile.” 

Bottom  line:  If  any  of  these  offerings  res¬ 
onate,  push  your  carriers  to  provide  them. 
Don’t  assume  they  know  what  you  want 
—  see  my  point  above  about  carriers 
being  uniquely  out  of  touch. 

Correction:  In  my  Nov.  1  column  I 
referred  to  the  Georgia  Institute  of 
Technology  as  “Georgia  Tech  University’ As 
reader  (and  long-time  Tech  fan)  Jason 
Williams  points  out,  this  is  incorrect.  I 
regret  the  error. 

Johnson  is  president  and  chief  research 
officer  at  Nemertes  Research,  an  indepen¬ 
dent  technology  research  firm.  She  can  be 
reached  at  johna@nemertes.com. 
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plans  to  scale  that  to  more  than  1,000 
PFEs  per  TX,  he  says. 

Carriers  can  wait,  according  to  Current 
Analysis’  Ogle.  They’re  currently  not  going 
much  beyond  IT  bit/sec. 

T640  routers  can  be  connected  to  the  TX 
Matrix  at  distances  of  up  to  328  feet,  allow¬ 
ing  for  both  local  and  distributed  deploy¬ 
ments.  Juniper  says.  It  runs  Juniper’s  Junos 
operating  system  software  with  high-avail- 
ability  features  such  as  Graceful  Routing 
Engine  Switchover,  In-service  Software 
Upgrades  and  Bi-directional  Forwarding 
Detection. 

The  TX  has  been  beta-tested  at  Deutsche 
Telekom  (DT)  and  Korea  Telecom,  Jacobs 
says.  DT’s  TCom  fixed-line  division  routes 
more  than  35  petabytes  of  data  per  month. 

Asked  if  there  were  any  production 
deployments  of  the  TX  among  Juniper’s  75 
T-series  customers,  Jacobs  says  the  com¬ 
pany  is  not  ready  to  announce  produc¬ 
tion  deployments  of  the  system. 

Cisco's  counter 

On  the  competitive  front,  Cisco  says  it 
can  interconnect  multiple  CRS-ls  —  and 
its  switching  matrices  —  to  achieve  92T 
bit/sec  of  capacity  Juniper  cannot  inter¬ 
connect  multiple  TXs  but  says  that  cus¬ 
tomers  do  not  require  such  a  capability 
Customers  will  want  separate  switching 
matrices  for  redundancy,  Jacobs  says,  and 
they’re  confident  that  the  performance 
and  scale  of  the  routers  will  grow. 

The  application  of  interconnecting 
switching  matrices  is  a  “philosophical  dif¬ 
ference’  between  Cisco  and  Juniper, 
Jacobs  says. 

The  Juniper  rollout  comes  days  before 
Cisco  fetes  press  and  analysts  from  around 


Deep  in  the  heart  of  TX 

Features  of  Juniper’s  multichassis 

router  matrix: 

•  Connects  fourT-series  routers  to 
accomodate  subscriber  growth. 

•  Redundant  optical  connections  for 
service  availability. 

•  Performance  of  3  billion  packet/sec 
for  service-level  assurance. 


the  world  at  its  annual  analyst  conference 
this  week.  At  the  conference,  Cisco  is 
expected  to  introduce  a  half-size,  640G 
bit/sec  version  of  its  CRS-1  router  for  small¬ 
er  core  networks  —  so  Juniper’s  timing 
with  the  TX  launch  is  no  coincidence. 

Base  pricing  for  a  TX  chassis  starts  at 
$175,000.  A  fully  configured  system  can 
cost  $1  million,  Jacobs  says.H 


Q  A 

Arbor 

continued  from  page  41 

information  regarding  large  DoS  attacks.  Is 
that  still  going  on,  and  how  important  is  it? 

It’s  true  service  providers  have  been 
calling  each  other  when  DoS  attacks 
strike  because  their  networks  are  con¬ 
nected.  Collaboration  is  absolutely 
important.They  do  help  each  other  to 
get  really  bad  attacks  under  control. 

It’s  a  win-win.  Also,  Arbor  is  coming 
out  with  a  product  that  will  allow  ser¬ 
vice  providers  to  share  in  real-time  a 
detailed  description  of  these  attacks. 
It’s  all  about  saving  time  and  having  a 
very  efficient  conversation  between 
support  engineers  to  get  a  DoS  attack 
offline. 

If  I'm  a  user  shopping  around  for  a  new  IP 
service  provider,  what  should  I  ask  so  I 
know  I’m  getting  the  best  protection 
against  attacks? 

Ask  if  they  have  any  assurances  in 
their  service-level  agreement  regard¬ 
ing  DoS  attacks.  Ask  what  process  they 
use  when  and  if  an  attack  occurs. 
Make  sure  the  service  provider  can 
offer  a  solution.  Customers  need  to 
understand  that  fighting  DoS  requires 
expense  and  manpower  from  the  ser¬ 
vice  provider,  and  customers  should 
expect  to  pay  a  premium  for  it.  And  it’s 
worth  the  premium. 

What  should  companies  be  doing 
inside  their  own  networks  to  reduce 


vulnerabilities? 

We’re  hoping  large  enterprises  start 
segmenting  the  inside  of  their  networks 
to  boost  the  perimeters. The  perimeters 
are  not  what  they  used  to  be  so  we 
want  to  create  virtual  perimeters  on 
the  inside  of  their  networks. 

Are  corporations  doing  enough  to  thwart 
internal  threats? 

For  an  enterprise,  security  has  always 
been  deployed  at  the  DMZ.They  have 
firewalls  and  VPNs  and  other  gear  to 
stop  hackers  trying  to  get  to  their  net¬ 
work.  All  security  has  been  around  the 
DMZ.  Actually  securing  the  internal 
operating  network  is  new.  A  worm  isn’t 
a  threat  to  the  DMZ.  It’s  a  threat  be¬ 
cause  once  it’s  inside  there  is  no  fire¬ 
wall  to  stop  it,  and  a  worm  has  free 
reign  to  infect  everything. The  worm 
may  have  come  in  through  your  fire¬ 
wall,  but  more  likely  it  came  in  on  a 
mobile  computer  that  someone 
brought  into  the  office  and  connected 
to  the  network.  A  worm  requires  a  new 


More  online! 


Deploying  VoIP  opens  a  new  front  in  network 
security.  Learn  how  to  integrate  new  solutions 
with  with  enterprisewide  protection  at  a 
free  Network  World  mnl 

DocFinder  4444 


EMC2 

where  information  lives 


Fr:  a  wide  range  of  information  management  challenges 


To:  a  wide  range  of  software  to  overcome  them 


EMC  SOFTWARE  GIVES  YOU  MORE  OPTIONS,  MORE  CHOICES.  You  have  all  kinds  of  information 
management  challenges.  EMC  has  the  software  to  help  you  overcome  them.  Whether  you’re  dealing  with  storage 
management  or  content  management.  So  you  can  manage  growth,  protect  and  recover  information,  achieve 
compliance  and  business  continuity,  and  keep  everything  running  smoothly.  And  EMC  software  works  with  your 
systems  and  software.  Now,  and  in  the  future.  To  learn  more,  visit  www.EMC.com/software. 

IMC  EMC.  .ind  where  information  live*,  are  <egistered  trademarks  of  EMC  Corporation.  »<}  2006  LMi  •  Corporation.  All  flghls  teserved. 


Savings 
That  Get 
You  Talking! 


Use  The  internet  To  Save 
Money  On  Phone  Calls! 


Make  the  most  of  your  high-speed  Internet  service!  Use  the 
latest  Voice  over  IP  (VoIP)  technology  from  Linksys  to  cut  your 
phone  bill.  Simply  plug  the  Linksys  Phone  Adapter  into  your 
router  and  connect  a  standard  telephone. 

When  you  sign  up  for  a  Voice  over  IP  service 
package*,  you'll  get  great  features  like: 

*  Unlimited  local  and  long 
distance  calling. 

*  Free  Voice  Mail,  Caller  ID, 
and  more. 

*  Great  International  rates! 


Phone  Adapter 
with  2  Ports 


iNGRAM 

ebsesi 


p  Tech  Data 


Visit  www.Linksys.com/Voice  for 
details,  or  call  our  Advice  Line  at: 


1-800-546-5797 


ot.T:'  iP  service  package  from  a  specific  provider  is  required,  and  sold  separately.  Linksys  is 
■  d  trademark  or  trademark  of  Cisco  Systems,  Inc.  and/or  its  affiliates  in  the  U.S.  and  certain 
uMries,  Copyright  ©  2004  Cisco  Systems,  Inc.  All  rights  reserved. 
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■  PRODUCTS,  SERVICES  AND  STRATEGIES 

FOR  TYING  TELEWORKERS  TO  THE  ENTERPRISE 


EMC’s  SAN  is  an  easy  install 

Network  World  editor  plows  his  way  through  installation  of  the  SOHO  SAN  in  a  mere  32  minutes. 


■  BY  DENI  CONNOR 

EMC,  Dell,  HP  and  QLogic  have  been 
busy  touting  easy-to-implement  and  afford¬ 
able  storage-area  networks  that  even  a 
small  office  administrator  can  install. 

We  put  one  to  the  test.  Network  World 
Multimedia  Editor  Jason  Meserve  installed 
and  configured  a  $5,000  EMC  Clariion 
AX100  in  32  minutes  last  month  at  EMC’s 
offices  in  Hopkinton,  Mass.  The  AX100 
debuted  in  May 

Traditional  direct-attached  storage  can 
be  difficult  to  manage  and  expand.  A  SAN 
provides  better  storage  utilization  by  letting 
a  network  administrator  view  data  on  an 
entire  SAN  from  any  server. 

The  AX  100  storage  array  which  comes 


mi 


■  Home  and  small  office  wireless 
LAN  equipment  shipments  grew  73% 
from  2003  to  2004,  but  revenue  growth 
slowed,  increasing  only  21%,  accord¬ 
ing  to  a  new  Dell'Oro  Group  report. 
Growth  was  spurred  by  back-to- 
school  sales,  but  aggressive  rebates 
and  advertising  promotions  caused 
prices  to  drop,  diminishing  revenue. 
The  report  found  802. 11g  accounted 
for  nearly  75%  of  total  shipments,  and 
ranked  Linksys,  D-Link  and  Netgear 
the  top  three  vendors. 

■  Interlink  has  launched  Lucid- 
Link  Home  Office  Edition,  soft 
ware  that  simplifies  802. IX  Wi-Fi 
Protected  Access  wireless  network 
encryption.  The  software  automati¬ 
cally  generates  dynamic  encryption 
keys  that  change  each  time  a  user 
connects  to  the  network.  LucidLink 
automatically  configures  D-Link  and 
Linksys  access  points  and  makes 
adding  and  removing  users  a  two- 
click  operation.  It  supports  up  to 
three  wireless  users,  runs  on 
Windows  XP,  and  works  with  most 
802.1X-compliant  access  points  and 
routers.  The  product  costs  $99. 


The  EMC  Clariion  AX100  SAN  is  easy  enough 
for  savvy  office  managers  to  install  without 
IT  help. 


with  a  single  or  dual  controllers,  has  a  min¬ 
imum  of  eight  250G-byte  Serial  Advanced 
Technology  Attachment  drives  for  a  total  of 
2T  bytes.  A  single  controller  array  will  sup¬ 
port  two  servers;  a  dual-controller  array  will 
support  up  to  four. 

Meserve  —  who  only  has  experience  in¬ 
stalling  PCs  and  network  adapters  —  took 
the  AX  100  storage  array  out  of  the  box, 


■  3am  Labs  has  released  a  new  ver¬ 
sion  of  LogMeln  Scout,  its  free 
remote  access  policy  tool.  Scout 
manages  and  detects  instances  of 
remote  access  products  on  corporate 
PCs.  Version  2.0  increases  the  number 
of  detected  products  to  24,  including 
PCAnywhere,  GoToMyPC,  versions 

of  VNC,  Timbuktu  and  LapLink.  New 
features  include  the  ability  to  create 
policy-driven  security  and  usage  poli¬ 
cies  for  the  company's  LogMeln  and 
LogMeln  Pro  desktop  remote  control 
products. 

■  D-Link  has  announced  an  802.1 1g 
access  point  for  small  and  midsize 
businesses.  Embedded  clustering  and 
self-management  features  let  the 
D-Link  AirPremier  manage  up  to  eight 
other  AirPremier  access  points  as  a 
single  system,  so  configuration  infor¬ 
mation  and  management  policies  are 
automatically  distributed  and  shared. 
The  access  points  can  self  monitor 
and  self  heal  by  allowing  wireless 
users  to  reconnect  to  the  network 
through  any  AirPremier  on  the  sys¬ 
tem.  Other  features  include  power 
over  Ethernet,  Wireless  Distribution 
System,  adjustable  power,  auto  chan¬ 
nel  selection,  load  balancing  and  QoS. 
The  access  point  supports  802. 11x 
authentication  and  WPA  with  Advan¬ 
ced  Encryption  Standard  encryption. 
The  AirPremier  costs  $350. 


unfolded  the  11-step  installation  poster, 
plugged  in  the  array  and  turned  it  on. 

He  did  however  ask  for  help  lifting  it  out 
of  the  box. 

After  powering  on  the  array  he  connect¬ 
ed  it  to  Windows  Server,  already  installed. 
Two  Fibre  Channel  host  bus  adapters 
(HBA)  —  similar  in  function  and  installa¬ 
tion  to  network  adapters,  they  connect 
servers  to  storage  —  were  also  pre¬ 
installed.  Meserve  connected  the  array  to 
the  HBAs  in  the  server  via  separate  fiber¬ 
optic  cables. 

While  the  EMC  AX100  was  easy  to 
install,  along  the  way,  Meserve  asked  EMC 
support  engineers  for  confirmation  that 
he  was  doing  things  correctly.  He  was. 

EMC  sells  the  AX100  through  value-added 
resellers  listed  on  its  site  (www.nwfusion. 
com,  DocFinder:  4928),  as  well  as  outlets 
such  as  Dell,  Computer  Discount  Ware¬ 
house,  Tech  Data  and  Avnet.  If  you  go  the 
latter  route,  you’ll  need  to  buy  the  HBAs 
and  fiber-optic  cable  separately 

Meserve  connected  the  AX100  directly  to 
the  server.  If  you  have  more  than  four  host 
computers  to  attach,  another  option  is  to 
add  a  Fibre  Channel  switch.  A  QLogic 
eight-port  SANbox  5200  stackable  switch 
costs  $3,400  at  dell.com. 

Next,  he  launched  the  Navisphere 
Storage  System  Initialization  utility  and  reg¬ 
istered  the  HBA  with  the  AX  100  by  adding 
an  available  IP  address.  Then  he  started 
Navisphere  Express  and  opened  Internet 
Explorer.  In  the  browser  navigation  win¬ 
dow,  he  entered  the  same  IP  address. 

Step  by  step 

The  1 1-step  poster  is  clear  and  easy  to 
understand.  Initial  steps  include:  prepare 
your  site;  prepare  your  server;  and  unpack 
the  storage  system.  For  brevity  EMC  pre¬ 
pared  the  site  and  server  for  Meserve,  who 
started  on  Step  3.  From  there,  he  performed 
these  steps:  install  the  AX100/AX100SC; 
connect  AC  power;  power  up  the 
AX100/AX100SC  switch(es)  and  UPS;  and 
connect  the  storage  system  to  servers 
(hosts)  and  a  network.  Next,  he  performed 
the  software  steps:  initialize  the  AX100/ 
AX100SC;  and  register  servers  with  the 
AX  100/AX  100SC. 

Guided  by  the  poster,  Meserve  configured 
the  storage  array  He  created  a  hot  spare, 
pools  of  disk  capacity  and  virtual  disks 
(several  physical  disks  lumped  together  to 
represent  a  virtual  disk),  then  assigned  the 


EMC  Clariion  AX100 


Price:  $5,000  for  2T  bytes. 

Install  time:  32  minutes. 

Pros:  Affordable,  easy  to  install 
and  manage. 

Cons:  Requires  some  knowledge 
of  Windows  Server  2003,  NetWare 
or  Linux  server  administration. 

Bottom  line:  Works  as  promised. 


virtual  disks  to  a  server.  (If  he  had  more 
than  one  server  attached  to  the  SAN,  he 
would  have  assigned  it  to  a  virtual  disk.)  he 
then  configured  event  notification  so  that  if 
anything  went  wrong  he  would  receive  an 
e-mail  alert. 

The  last  step  was  getting  the  network 
operating  system  to  recognize  the  SAN.This 
took  an  extra  5  minutes.  Because  Meserve 
was  not  familiar  with  Windows  Server 
2003,  EMC  assisted. 

Although  Meserve’s  lack  of  Windows 
Server  knowledge  stopped  him  cold,  most 
office  administrators  routinely  map  net¬ 
work  drives  and  change  passwords,  and  as 
such  are  experienced  with  Windows 
Server  2003  or  Small  Business  Server. 

The  AX100  works  with  Windows,  NetWare 
and  Linux  host  computers.  The  storage 
array  includes  remote  management  and 
snapshot  back-up  software.  EMC  says  it 
plans  to  offer  RAID  10  support,  which  adds 
better  performance  and  fault-tolerance  to 
the  system.  The  AX100  compares  to  HP’s 
MSA  1000,  which  the  company  introduced 
in  October  SS 


More  online! 


What  can  branch-office  workers  expect  when  one  of 
these  devices  lands  on  their  doorsteps?  Our  multime¬ 
dia  presentation  shows  Meserve  in  action  as  he 
installed  the  EMC  Clariion  AX100  into  a  mock  LAN. 

DocFinder:  4929 


infrastructure.  Got  a  second? 


The  highly  dependable  HP  BladeSystem  features  Intel®  Xeon™  Processors.  Now  it's  possible  to  react  to  changing  business  conditions 
in  real  time— in  seconds.  Application  deployment  and  reprovisioning  become  an  automated  process.  From  single  console  remote 
management  to  up  to  19%  power  savings2— the  HP  BladeSystem  is  designed  to  save  you  time,  money  and,  quite  possibly,  your  sanity. 
Which,  of  course,  could  be  the  most  compelling  reason  of  all  to  learn  more. 


THE  SOLUTION 

THE  BENEFITS2 

HP  ProLiant  BL30p  Blade  Server 

•  2  Intel®  Xeon™  Processors  DP  up  to  3.20GHz/2MB' 

•  23%  savings  on  acquisition  cost 

•  High  density:  Up  to  96  servers  per  rack 

•  Up  to  19%  less  power  consumption 

•  HP  Systems  Insight  Manager™:  Web-based 

•  Up  to  93%  fewer  cables 

networked  managment  through  a  single  console 

•  Hot-swappable  server  design 

•  Flexible/Open:  Integrates  with  existing  infrastructure 

•  Rapid  Deployment  Pack:  For  ease  of  deployment 
and  ongoing  provisioning  and  reprovisioning 

•  Single  interface  for  integrated  remote  management 

invent 


Contact  HP  today  for  a  free  IDC  white  paper:  Adapting 
to  Change:  BladeSystem  Moves  into  the  Mainstream 


CLICK 

hp.com/go/Bladesmag5 

CALL 

1-800-282-6672 

option  5,  mention  code  AUFK 

VISIT 

your  local  reseller 

•  ic»u.eM  ont  c*  higher  performance  2  Based  on  Internal  HP  testing;  compared  to  similarly  configured  HP1U,  2P  server.  Intel.  Intel  Inside,  the  Intel  Inside  logo  and  Intel  Xeon  are  trademarks  or  registered  trademarks  of  Intel  corporation  or  its  subsidiaries  in  the  United  States  and  other  countries. 

v  ■C04  I  Matt' -Packard  Development  Company.  L.P. 


Protocol  extends  reach  of  multicast 


HOW  IT  WORKS 


MSDP 


Multicast  Source  Discovery  Protocol  lets  rendezvous 
points  inform  each  other  about  the  sources  that  are 
known  to  them,  enabling  access  to  these  sources 
from  any  domain  or  location. 


Rendezvous 
Point  1 


Rendezvous 
Point  2 


i 

il 

©  Source  X  starts  to  transmit  data  to  Group  Y.  The  first-hop  router  encapsulates  this  data  and  sends  it  to  Rendezvous 
Point  1.  Source  X  and  Group  Y  get  registered  with  Rendezvous  Point  1. 

©  Rendezvous  Point  1  sends  a  source-active  message  to  Rendezvous  Point  2  with  Source  X  and  Group  Y  information. 

©  Group  Y  receiver  wants  to  receive  the  data  and  sends  a  “join”  message  to  Rendezvous  Point  2. 

©  Rendezvous  Point  2  has  the  information  in  its  source-active  cache  and  sends  a  join  toward  the  source. 

0  Receiver  joins  group  and  receives  data. 


■  BY  PAUL  GILBERT 

In  a  multicast  network,  sources  and 
receivers  register  with  their  local  ren¬ 
dezvous  points  to  announce  sessions  and 
enable  receivers  to  find  content.  Large 
multicast  networks  typically  have  several 
rendezvous  points  at  different  locations  or 
domains. 

The  trouble  is,  there’s  no  way  for  a  ren¬ 
dezvous  point  to  inform  remote  ren¬ 
dezvous  points  of  all  the  sources  it  knows 
about.  If  a  user  in  the  U.S.  is  looking  for  a 
source  in  its  network  that  is  multicasting 
live  TV  from  Europe,  it  will  go  to  its  local 
rendezvous  point.  Because  the  European 
source  is  not  registered  with  the  users 
local  rendezvous  point,  the  user  will  not 
be  able  to  access  the  session. The  session 
will  be  available  only  to  users  who  are 
local  to  the  rendezvous  point  with  which 
the  source  is  registered. 

Multicast  Source  Discovery  Protocol 
(MSDP)  solves  this  problem  by  enabling 
rendezvous  points  to  inform  each  other 
about  the  sources  that  are  known  to  them, 
thereby  enabling  access  to  these  sources 
from  any  domain  or  location.  An  experi¬ 
mental  protocol  described  in  IETF  RFC 


Got  great  ideas 


■  Network  World  s  looking  for  great 
ideas  for  future  Tech  Updates.  If  you 
want  to  contribute  a  primer  on  a  spe¬ 
cific  technology,  standard  or  protocol, 
contact  Amy  Schurr,  senior  managing 
editor,  features  (aschurr@nww.com). 


3618,  MSDP  can  be  used  between  multi¬ 
cast  domains  and  within  domains. 

A  large  organization  with  several  ren¬ 
dezvous  points  located  across  the  globe 
would  use  MSDP  In  the  scenario  de¬ 
scribed  above,  the  multicast  session  of  live 
TV  will  begin  in  Europe  and  the  source 
will  register  with  its  local  rendezvous 
point.  The  local  rendezvous  point  will 
then  use  MSDP  to  tell  all  the  other  ren¬ 
dezvous  points  on  the  network  about  the 
source  and  group  that  is  using  this  ses¬ 
sion.  When  a  user  wants  to  receive  this 
multicast  feed,  it  will  go  to  its  local  ren¬ 
dezvous  point  and  request  the  data  to  be 
delivered  from  the  source.The  rendezvous 
point  then  will  have  the  source  and  group 
addresses  of  this  session  and  connect  the 
user  to  the  live  TV 

Although  MSDP  originally  was  specified 
to  connect  different  multicast  domains,  it 
also  can  be  used  with  a  technology  called 
“anycast”  within  domains.  Anycast  is  used 
when  multiple  rendezvous  points  are 
required  for  load  balancing  and  redundan¬ 
cy  Sources  and  receivers  will  use  their  clos¬ 
est  rendezvous  point.  If  one  rendezvous 
point  fails,  the  other  rendezvous  point  still 
will  be  available  with  no  need  for  any  con¬ 
vergence  or  configuration  changes. 

Rendezvous  points  set  up  peering  rela¬ 
tionships  with  other  rendezvous  points 
that  have  MSDP  enabled.This  peering  rela¬ 
tionship  uses  TCP  for  connectivity  and  to 
exchange  control  information. 

When  a  new  multicast  source  comes 
online,  it  needs  to  first  register  with  its 
local  rendezvous  point.  The  rendezvous 
points  receives  an  encapsulated  data 
packet  from  the  source’s  first-hop  router 
and  adds  this  information  to  its  mroute 
table.This  packet  also  is  encapsulated  in  a 


source-active  message  and  is  forwarded 
to  all  MSDP  peers.  The  source-active  mes¬ 
sage  contains  the  address  of  the  data 
source,  the  group  address  the  data  source 
intends  to  send  to  and  the  IP  address  of 
the  rendezvous  point. 

When  a  rendezvous  point  receives  an 
source-active  message,  it  checks  to  see  if  it 
has  any  interested  receivers  for  that  group. 
If  it  does,  the  rendezvous  point  will  send  a 
“join”  message  to  the  source  asking  to 
receive  the  data.  It  then  forwards  the  data 
it  receives  down  the  multicast  tree  to  the 
receiver. 

Rendezvous  points  that  receive  source- 


active  messages  must  cache  them  even  if 
there  are  not  interested  receivers  at  that 
time.  This  prevents  join  latency.  Rendez¬ 
vous  points  periodically  send  source- 
active  messages  as  long  as  the  source  is 
still  active  or  immediately  when  a  new 
source  comes  online. 

MSDP  is  used  widely  in  enterprise  net¬ 
works  to  ensure  that  no  matter  where  and 
what  rendezvous  point  a  source  joins,  it 
can  be  reached  throughout  its  network. 

Gilbert  is  vice  president  of  Router  Man¬ 
agement  Solutions.  He  can  be  reached  at 
paul@routermanagement.  com. 


Ask 

Dr.  Internet 

$8*  y$  Y”  .|rv..  Mr-: jo: 

We  are  evaluating  the  OpenVPN  application  for 
use  as  an  SSL  VPN  solution.  In  order  to  use  it  we 
wanted  to  plug  in  our  own  cryptographic  service 
provider  (CSP)  for  all  cryptography  operations 
(such  as  SSL.TLS  and  IPv4).  While  looking  into  the 
code  of  OpenVPN,  we  found  a  reference  to  the  MS 
CSP  interface  in  the  CryptoApi  but  couldn't  deter 
mine  whether  it  is  yet  in  use  or  not?  In  case  it  is 
not  could  you  please  explain  what  we  need  to  do 
to  use  our  own  CSP  with  OpenVPN  for  all  crypto- 

graphic  operations. 

You  will  have  to  work  with  the  underlying  Open- 
SSL  modules  to  insert  your  own  CSP.  Depending 
on  your  target  environment,  you  might  find  the 
CSP  Perl  package  available  at  www.nwfusion. 
com,  DocFinder:  4931,  useful.  It  provides  an  inter¬ 
face  to  CSP  and  CA  management  OpenSSL 
command  line  tools.  On  Windows,  OpenVPN  can 
use  the  MS  Crypto  API  to  read  certificates  and 

keys  from  smart  cards.  The  Common  Data 

Security  Architecture  framework  documented  at 
DocFinder:  4932  provides  another  set  of  tools 
helpful  in  extending  and  modifying  your  CSP 
implementation  for  use  with  OpenSSL  in  your 
OpenVPN  implementation. 

Blass  is  a  network  architect  at  Change@Work  in 
Houston.  He  can  be  reached  at  dr.internet@change 
atwork.  com. 
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Expanding  waistlines  and  networks 


GEARHEAD 

1NSIOE  THE 

NETWORK 

MACHINE 

Mark 

Gibbs 


Well,  there  goes  one  of  our  favorite 
holidays, Thanksgiving,  into  nothing 
more  than  a  memory  of  fun, a  thick¬ 
ening  of  our  waistline  and  a  very  useful 
new  device  on  our  network. 

(Darn,  but  that  was  a  fine  turkey.  We  used 
a  method  for  turkey  cooking  we  learned 
from  federal  inmate  No.  55170-054,  aka 
Martha  Stewart.The  next  one  we  cook  will 
also  be  brined,  which  has  got  us  all  kinds  of 
excited  —  actually  about  as  excited  as 
when  we  first  deep-fried  a  turkey  a  truly 
geek  dining  experience  as  it  combined 
food  with  fire  and  the  risk  of  bodily  injury) 
Where  were  we?  Oh, yes,  that  new  device 
on  our  network.  The  gizmo  in  question  is 
the  Network  LifeSaver  x8  from  Rich  Media 
Technologies  (see  details  at  www.nwfu 
sion.com,  DocFinder: 4930). This  is  a  power 
controller  with  integrated  device  and  ser¬ 
vice  monitoring,  control  and  alerting. 

Network  LifeSaver  is  a  snappy  fire-engine- 
red  box  with  two  power  inputs  and  eight 
power  output  sockets  and  an  RJ45  Ether¬ 


net  interface,  and  it  comes  with  all  the 
power  cables  you  might  need. 

Based  on  a  medical-grade  power  supply  it 
is  intended  to  be  ultra-reliable.  Because 
cooling  fans  are  a  frequent  failure  point, the 
Network  LifeSaver  uses  passive  cooling.  It 
also  uses  two  independent  RISC  processors 
to  run  the  embedded  control  system.  And  if 
all  that  isn’t  groovy  enough,  to  control  AC 
power  the  Network  LifeSaver  uses  some¬ 
thing  the  company  calls  “double-layer  relay 
switching.” 

You  use  the  Network  LifeSaver’s  front 
panel  buttons  to  set  it  up.The  user  interface 
is  a  40-character-by-2-line  backlit  LCD  that 
doubles  as  a  status  display  Configuration 
involves  setting  the  IP  address  and  port  of 
the  appliance,  the  gateway  and  subnet 
mask  the  network  uses,  and  the  admin 
password. 

With  that  out  of  the  way  you  can  install 
the  administrative  software  on  a  PC.This  is 
a  curiously  naive  installation:  You  are 
instructed  to  copy  the  files  from  the  CD  to 
anywhere  you  please  and  run  the  applica¬ 
tion.  This  is  good  because  it’s  simple  and 
there  are  no  dependencies,  and  un-instal- 
lation  is  clean.  On  the  other  hand,  it  is  just 
not  as  slick  as  having  an  installer. 

Once  the  admin  application  is  running, 
you  need  to  tell  it  the  IP  address  and  port 


used  by  the  appliance,  and  the  subnet 
mask,  IP  addresses  or  names  for  the  gate¬ 
way  DNS  servers,  mail  server  details,  polling 
frequency  for  automated  tests  and  the 
appliance  admin  password. 

Here’s  one  of  our  few  complaints:  The 
default  port  the  hardware  offers  is  0,  but  if 
you  leave  it  at  that  and  tell  the  admin 
application  to  also  use  Port  0,  communica¬ 
tion  will  not  work  and  you  won’t  know  why 
—  neither  the  appliance  nor  the  admin 
utility  tell  you  that  this  is  an  illegal  port. 

On  successful  connection  the  admin  util¬ 
ity  displays  a  diagram  of  the  Network 
LifeSaver  and  its  connections  to  the  mail 
server,  the  Internet  gateway  and  each  of  the 
eight  “channels”  —  the  devices  for  which 
the  Network  LifeSaver  is  supplying  power. 

You  then  can  set  up  each  channel  with  its 
own  port  and  password,  email  address  for 
failure  notification  and  tests.  The  tests  can 
be  made  to  any  of  the  device’s  ports  (or  for 
that  matter,  any  other  device’s  ports)  using 
standard  or  custom  data.  For  example,  you 
could  create  a  simple  ping  of  an  address  or 
execute  a  Web  server  test  that  checks  if  a 
page  can  be  retrieved. 

The  penultimate  part  of  the  system  is  the 
client  software  —  the  utility  that  runs  on 
Windows  2000  and  XP  systems  and  sup¬ 
ports  restarts,  shutdowns  and  memory 


monitoring  (we  would  like  to  see  support 
for  Linux  and  interfacing  to  VMware  to  shut 
down  individual  virtual  machines). 

Finally  there’s  the  Control  Room  Builder 
software.  This  is  a  customizable  GUI  that 
can  initiate  shutdowns  and  restarts,  and 
display  statistics  gathered  by  one  or  more 
Network  LifeSaver  appliances  and  client 
software  installations.You  can  dress  up  the 
display  with  graphics  and  shapes  that  can 
be  linked  to  specific  channels  to  show  the 
status  of  that  device. 

The  Network  LifeSaver  also  comes  with 
an  optional  Pocket  PC  application  so  you 
can  manage  the  channels  through  your 
wireless  Pocket  PC  device. 

We  really  like  this  system  —  it  is  very  use¬ 
ful  and  makes  remote  AC  power  control 
simple  and  flexible.  In  terms  of  scalability 
we  feel  that  the  Network  LifeSaver  falls  just 
short  of  a  true  enterprise  system,  as  it  isn’t 
extensible  through  an  API  and  doesn’t  sup¬ 
port  integration  with  other  network  man¬ 
agement  systems.That  said,  we  love  it! 

The  Network  LifeSaver  costs  $1,000  for 
the  appliance  plus  the  management  soft¬ 
ware  and  Control  Room  application.  The 
optional  Pocket  PC  software  costs  $130. 

OK,  back  to  cooking  and  eating.  Tales  of 
tighter  clothes  to  gearhead@gibbs.com. 


Cool 


Quick  takes 
on  high-tech  toys 

By  Keith  Shaw 


T-Mobile,  Motorola  aim  to  ease  wireless  messaging 

Anyone  who  has  tried  to  “tap  tap  tap”  his  way  through 
a  text  message  on  a  cell  phone  can  tell  you  how  annoy¬ 
ing  it  is.  Motorola  and  T-Mobile  aim  to  ease  this  burden 
with  the  new  A630,  which  includes  a  full  qwerty  key¬ 
board  tucked  away  inside  a  Bluetooth-enabled  cell 
phone.  The  horizontal  flip-open  device  also  features 
AOL  Instant  Messenger,  a  4x  zoom  digital  camera,  and 
integrated  speakerphone.The  A630  is  available  now  for 
$300  from  T-Mobile. 


Text  messaging  has  never  been  easier 
thanks  to  the  A630’s  qwerty  keyboard. 


never  get  lost  again  with 
lOGear's  GPS  Navigation  System. 


Axis  launches  network  dome  cameras 

Axis  Communications  last  week 
launched  two  network  cameras  in 
the  “dome”  style  for  professional 
security  surveillance  and  remote  § 

monitoring.  The  Axis  23 ID  and 
232D  devices  connect  to  an  IP  net¬ 
work  and  provide  full-frame 
motion  JPEG  video, along  with  pan, 
tilt  and  zoom  capabilities.The  23 ID 
(about  $2,000)  and  232D  (about 
$3,000)  are  available  through  Axis’ 
distribution  channels. 

The  systems  include  18x  optical 
zoom  and  12x  digital  zoom  fea¬ 
tures,  an  autofocus  lens  and  a  1/4- 
inch  interlaced  CCD  image  sensor. 

The  dome  style  lets  the  cameras 
perform  a  360-degree  pan  and  90- 
degree  tilt  to  cover  viewing  over  a 
'urge  area.  Users  can  program  20 
:  re-set  positions  and  one  sequence  (autopatrol)  on  the 
•  ameras.  Other  features  include  four  alarm  inputs  and 
ouipufs.  advanced  event  management,  and  security  sup- 

>■  r;  (HTTPS  and  IP  address  filtering). More  information  is 
available  at  the  Axis  Web  site. 


lOGear  offers  Bluetooth  GPS  navigation  device 

IOGear  last  week  launched  its 
Bluetooth  GPS  Navigation  System, 
hardware  and  software  that  pro¬ 
vides  driving  directions  to 
Bluetooth-enabled  notebooks,  PDAs 
or  cell  phones  over  the  GPS  network. 
The  small  device  is  compact  enough 
for  a  dashboard  or  a  briefcase,  and 
offers  up  to  30  hours  of  continuous 
usage,  IOGear  says.  The  navigation  soft¬ 
ware, which  supports  Windows  ME,  2000 
and  XP  and  Pocket  PC  2002  or  later 
devices,  offers  map  data  for  the  U.S.  and 
Canada,  a  3-D  display  option,  voice 
directions,  speed  detection,  alternative 
routing  and  trip  time  estimation. 
lOGear  also  offers  an  optional 
external  magnetic  antenna 
to  boost  reception.  The 
system  costs  about  $300 
—  head  to  the  IOGear  Web  site  for  more 
details. 

Shaw  can  be  reached  at  kshaw@ 


Axis  Communications'  dome-style 
network  camera  is  designed  for 
professional  security  surveillance. 


nww.com. 


3Com 

Exercise  Choice 


Featuring 


TM 


3Com  Builds  a  Better  Network, 
So  You  Can  Build  a  Better  Business 


3Com  designs  comprehensive,  enterprise-wide  communication  solutions  that 
make  powerful  and  sophisticated  technologies  affordable  and  practical. 


3Com  Security  Switch  7245 


Whether  used  for  anchoring  high-traffic  campus  networks  or  powering  small 
remote  offices,  our  routing,  switching,  telephony,  wireless  and  security  solutions 
deliver  world  class  high-performance  and  availability. 

With  over  25  years  of  networking  know-how  incorporated  into  each  and  every 
product,  3Com  lets  you  spend  less  time  worrying  about  your  network,  and  more 
time  growing  your  business. 

For  more  information  go  to  www.3com.com/enterprise08 


3Com  Security  Services  Switch  portfolio 
fundamentally  improves  the  economics  of 
delivering  security  applications  in  high-speed, 
mission-critical  networks.  Instead  of  building 
an  infrastructure  whose  costs  increase  directly 
with  traffic  growth,  data  center  architects  now 
have  a  powerful  new  platform  that  delivers  a 
higher  and  faster  Return  on  Investment  (RO!) 
with  the  flexibility  to  support  a  series  of 
essential  network  applications. 


Wireless 

Networking 


Security  Switch 


High  Performance 
Switching 


WAN  Routing 


"The  simplicity,  security;  and  value  of  our  new 
3Com  network  exemplifies  everything  we 
want  our  new  transportation  complex  to  be 
for  our  tenants  and  travelers  alike. " 

Mark  Berkheirner 
Manager  of  Information  Technology 
Harrisburg  International  Airport 


Copyright  ©  2004  3Com  Corporation.  All  rights  reserved.  3Com  and  the  3Com  logo  are  registered  trademarks  of  3Com  Corporation.  All  other  product  names 
may  be  trademarks  or  registered  trademarks  of  their  respective  companies 
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OH  TECHNOLOGY 

Keith  Shaw 

Since  you  cant 
beat ’em, 
join  ’em 


With  all  of  the  measures  you’ve  instituted  over  the 
years,  you  probably  presume  your  corporate  net¬ 
work  is  secure.  Firewalls,  intrusion-detection  sys¬ 
tems  and  anti-virus  scanners  have  helped  prevent  hackers 
and  malicious  threats  from  damaging  company  systems. 

But  all  of  that  goes  down  the  drain  if  an  employee  con¬ 
nects  to  your  network  through  a  compromised  home  PC. 
Evidence  suggests  that  more  hackers  are  using  these 
backdoors  to  get  into  networks  instead  of  trying  to  sneak 
by  firewalls,  IDS  systems  and  other  security  gear  guarding 
the  ramparts.  Employees  who  might  be  well  trained  in 
protecting  their  work  laptops  are  not  spending  the  money 
or  time  on  equal  protection  for  their  home  systems. 

Sure,  you  could  try  to  ban  home  PCs  and  other  devices 
from  your  network,  but  that  is  a  stopgap  measure  at  best. 
With  the  holidays  around  the  corner,  you  know  employ¬ 
ees  are  going  to  be  trying  to  connect  a  range  of  new 
devices  to  your  network. 

The  fact  is  the  line  between  equipment  used  for  work 
and  that  used  at  home  has  been  blurring  for  years.  With 
telecommuting  and  flexible  work  schedules,  employees 
use  whatever  it  takes  to  get  the  job  done,  whether  it’s  a  PC 
at  home  at  5  a.m.,  their  own  PDA  from  an  airport  at  noon, 
or  a  work-owned  laptop  in  a  hotel  room  that  evening.  But 
for  some  reason  work  policies  haven’t  kept  pace.  Many 
companies  continue  to  operate  under  the  mistaken  belief 
that  there  is  a  clear  line  between  work  equipment  and 
that  used  for  personal  use. 

It’s  time  to  concede  a  battle  you  cannot  win.  Instead  of 
banning  employees’  personal  devices,  allow  them  —  but 
with  the  same  protections  you  offer  for  company-issued 
equipment.  Negotiate  with  your  anti-virus  vendor  to  pro¬ 
vide  low-cost  or  free  copies  of  anti-virus  software  for 
employees’  home  PCs.  Give  personal  firewalls  to  everyone 
who  wants  one.  Spend  time  training  employees  on  proper 
security  practices  for  all  their  computers  —  not  just  the 
company-issued  system. 

AOL  recently  offered  free  anti-virus  software  for  all  of  its 
members  —  we  applaud  this  effort  by  a  service  provider 
willing  to  protect  its  members  and  educate  them  about 
security  issues.  If  AOL  can  protect  its  members,  corpora¬ 
tions  can  do  the  same  for  employees. 

It  might  represent  more  work  and  money  but  the  long¬ 
term  benefits  will  be  greater.  A  network  that  is  more 
secure  will  mean  less  time  spent  cleaning  up  messes 
caused  by  attacks  launched  from  compromised  personal 
systems. 


—  Keith  Shaw 
Senior  Editor,  Product  Testing 
kshaw@nww.  com 
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By  any  other  name 

I  loved  your  story  on  spyware  stoppers  for  enterprise- 
level  networks  (www.nwfusion.com,  DocFinder: 
4924).  At  my  company  spyware  is  something  I  have  to 
deal  v/ith  almost  daily  Users  frequently  call  com¬ 
plaining  about  poorly  performing  PCs  and  when  one 
of  our  IT  guys  checks  it  out,  we  often  find  spyware 
and  other  unwanted  programs  are  responsible. 

What  makes  me  angry  is  Claria’s  assertion  that  its 
Gator  products  are  legitimate  software.  Spyware  by 
any  other  name  is  still  spyware  and,  as  such,  unwant¬ 
ed  in  our  corporate  environment.  My  company  has 
a  “shoot  on  sight”  rule  in  effect  specifically  for  Gator 
and  other  similar  malicious  software.  People  can 
keep  their  passwords  on  a  piece  of  paper  or  in  a  file 
on  their  PCs;  we  don’t  need  the  Gator  eWallet  to  do 
it  for  us.  Enterprise-level  spyware  blocking  is  long 
overdue  and  welcome.  Gator  is  one  reptile  I’ll  gladly 
slay  without  a  permit  any  day 

Joe  Wojak 
Senior  user  analyst 
WW  Norton  &  Co. 

New  York 

More  on  SOAs 

Your  two-part  series  on  service-oriented  architec¬ 
tures  (“Service-oriented  hype  to  meet  hard  realities,” 
DocFinder:  4925,  and  “Early  adopters:  SOA  worth  the 
effort,”  DocFinder:  4926)  does  a  very  credible  job  of 
balancing  the  numerous  business  benefits  of  SOAs 
with  a  candid  portrayal  of  the  equally  numerous 
challenges  and  potential  pitfalls  of  a  loosely  cou¬ 
pled  architecture,  especially  the  inevitable  problems 
with  performance. 

The  stories  point  out  that  performance  issues  will 
result  from  the  volume  of  messages  and  in  XML 
parsing  operations.  I  agree,  but  that’s  not  the  whole 
story  What  the  series  didn’t  cover  was  data  integra¬ 
tion  or,  more  specifically  the  magnitude  of  perfor¬ 


mance  degradation  in  the  area  of  information 
access.  Flard-wired  applications,  the  mainstay  of 
most  mission-critical  systems,  are  often  built  that 
way  because  of  the  need  for  high  performance.  By 
breaking  that  wiring  and  loose  coupling  it  with  an 
SOA,  the  performance  of  all  SOA  services  will  be 
pulled  down  to  the  lowest  common  denominator. 

For  those  applications  for  which  high  performance 
is  non-negotiable,  information  that  must  be  accessi¬ 
ble  in  real  time  must  be  pulled  forward  from  the 
back-office  layer  into  the  services  layer  and  into  a 
mid-tier  cache  or  data  manager  that  reclaims  lost 
performance.  One  way  to  accomplish  this  would  be 
to  utilize  a  purpose-built  caching  or  in-memory  data 
management  product  that  is  designed  to  deliver 
accelerated  access  to  subsets  of  corporate  data.  It 
would  be  interesting  to  hear  how  SOAs  deal  with 
this  bottleneck. 

Tim  Shetler 
Mountain  View,  Calif. 


Mail  call 

The  renowned  journalist  H.L.  Mencken  cam¬ 
paigned  vigorously  that  newspapers  should 
sewe  as  a  voice  for  the  community.  Network 
World  is  committed  to  being  a  voice  for  the  user 
community,  but  you  can’t  have  a  dialogue  if  the 
communication  is  one  way. 

We  call  on  you  to  use  this  space  to  respond  to 
stories,  air  your  opinions,  share  ideas  on  issues 
or  problems,  comment  on  proposals  or  rumors, 
and  even  warn  peers  about  potholes  you’ve  had 
the  misfortune  to  step  into. 

You  can  send  letters  to  us  at  jdix@nww.com  or 
mail  them  to  Network  World,  1 18  Turnpike  Road, 
Southborough,  MA  01 772.  Please  include  your 
name,  city /state  and  phone  number  for  verifica¬ 
tion.  Letters  may  be  edited  for  brevity  and  clarity. 


More  online!  www.nwfiision.com  Find  out  what  readers  are  saying  about,  these  and  other  topics.  DocFinder:  4923 
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BOTTOM  LINE 

Joel  Snyder 

As  an  avowed  IPSec  zealot,  I  generally 
recommend  the  technology  for  remote 
access.  But  the  SSL  VPN  vendors  have 
been  building  such  great  technology  that 
there  are  now  places  where  SSL-based 
remote  access  is  clearly  a  better  choice  than 
IPSec.  One  of  the  best  places  for  SSL  VPNs  is 
in  the  ad  hoc  environment  —  places  where  your  employees  want  to 
connect  but  would  have  to  use  someone  else’s  computer,  such  as  in 
an  Internet  cafe  or  at  their  brother-in-law’s  barbecue. 

Because  SSL  VPNs  require  only  a  browser,  you  can  use  them  from 
anywhere.  The  problem  is  that  sensitive  information  might  come 
through  the  pipe,  and  having  that  data  sit  on  the  hard  drive  either  as 
a  saved  document  or  in  a  browser  cache  is  dangerous. To  solve  this, 
the  first  generation  of  SSL  VPNs  used  tools  such  as  cache  cleaners 
and  cookie  crumblers  to  try  to  obliterate  traces  that  might  be  left 
behind.  Moving  forward  from  that  primitive  start,  the  new  trend  is 
toward  virtual  desktops  —  helper  applications  that  track  new  files 
and  browser  changes,  and  unwind  everything  when  you  disconnect. 

Unfortunately,  even  virtual  desktops  are  not  perfect.  A  huge  prob¬ 
lem  is  platform  support.  For  example,  at  that  barbecue,  if  your  broth- 
er-in-law  has  a  Mac,  you  can’t  run  a  virtual  desktop.  Or  if  he  doesn’t 
have  the  right  version  of  Java  or  isn’t  running  ActiveX,  you  could  be 
out  in  the  cold. 

The  story  “Google  search  cache  spawns  SSL  fear”  (www.nwfusion. 
com,  DocFinder:  4744)  covers  a  more  subtle  problem:  Applications 
that  are  running  before  the  virtual  desktop  starts  don’t  get  unwound. 


Securing  endpoints  in  SSL  VPNs 


Google  Desktop  Search  watches  files  and  Web  pages,  and  maintains 
its  own  cache.  If  it’s  running  when  you  start  the  virtual  desktop,  your 
documents  could  be  cached,  accessible  to  the  next  person  to  use 
the  computer,  without  you  realizing  it. 

SSL  VPN  vendors  will  scramble  to  find  a  quick  solution  to  the 
Google  Desktop  Search  problem,  but  the  general  issue  remains: 
Techniques  such  as  virtual  desktop  never  will  be  100%  effective  at 
preventing  leaks.  Even  if  your  goal  is  only  to  help  users  practice 
good  computer  hygiene,  the  potential  for  inadvertent  disclosure  is 
significant. 

Network  managers  who  cannot  take  this  risk  can  use  other  tech¬ 
nologies  in  their  SSL  VPNs, such  as  a  virtual  console  (think  Timbuktu, 
pcAnywhere  orVNC)  or  terminal  services  (think  Windows  Terminal 
Services  or  Citrix)  application  to  keep  the  sensitive  data  from  ever 
being  downloaded  in  the  first  place.  Of  course,  all  these  solutions 
have  their  own  cost  and  compatibility  problems.  If  you’re  at  the  in¬ 
laws’  PC,  you  might  not  have  the  possibility  or  desire  to  download 
and  launch  a  Citrix  client. 

In  every  case,  the  best  solution  is  one  that  supports  your  security 
policy,  while  not  needlessly  preventing  access  by  legitimate  users. 
Make  sure  you  make  your  own  decision,  though,  and  don’t  let  the 
magical  marketing  spin  from  some  of  these  SSL  VPN  vendors  con¬ 
vince  you  that  the  impossible  is  suddenly  easy. 


Techniques  such 
as  virtual  desk¬ 
top  never  will  be 
100%  effective  at 
preventing  leaks. 


Snyder,  a  Network  World  Test  Alliance  partner,  is  a  senior  partner  at 
Opus  One  in  Tucson,  Ariz.  He  can  be  reached  at  joel.snyder@ 
opusl.com. 


TELECOM  CATALYST 

Daniel  Briere 

Land  of  the  Giants  or  of  the  Lost? 

1  n  Arthur  Clarke’s  famed  Rama  series, 

1  everything  happens  in  threes.  The  busi- 
1  ness  world  seemed  to  copy  that  for  a  long 
time,  with  the  Big  Three  Automakers,  the  Big 
Three  Long-Distance  Carriers  and  so  on. 
There  always  seemed  to  be  three  of  anything 
major. 

like.  It’s  the  Land  of  the  Giants,  where  the  few  big  players  will  make 
baby  steps  and  advance  at  a  pace  driven  by  each  other  rather  than 
customers.  Sure,  they  all  talk  about  what  customers  want,  but  they 
really  only  need  to  outpace  each  other  to  become  the  “better  option.” 

So  the  measurement  of  success  is  smaller. 

The  rest  of  the  market  is  the  little  guys  with  paper  clips  tied  to  string 
as  climbing  gear, struggling  to  just  climb  to  the  next  level. 

Start  voting  with 
your  dollars  to 
keep  innovation 
alive. 

Today,  everything  is  becoming  about  twos:  primary  and  backup. 
Companies  fight  to  be  either  the  clear  leader  in  a  market  or  the  pri¬ 
mary  alternative;  being  No.  3  doesn’t  cut  it  anymore.  If  there’s  a  No.  3, 
it’s  only  a  matter  of  time  before  it  either  merges  with  No.  2  or  1  or  is 
out-positioned  by  them.  There’s  simply  no  cachet  in  being  No.  3. 
Simply,  the  gap  between  Nos.  1  and  2  and  No.  3  and  the  rest  of  the 
pack  is  growing, and  where  it’s  not, consolidation  will  make  it  happen. 
We’ve  started  to  see  snippets  of  this  consolidation  already,  but  we 
need  a  lot  more  so  we  can  move  out  of  this  stage  and  get  back  to 
more  widespread  innovation  that  is  needed  to  achieve  true  order-of- 
magnitude  changes  in  the  way  things  are  done. 

The  problem  with  such  close  competitors  is  that  the  thinking  out¬ 
side  the  box  becomes  more  narrowly  focused.  Larger  players  have 
more  investment  in  the  status  quo,  and  their  definition  of  winning  the 
marketplace  is  easily  reduced  to  simply  beating  the  other  player 
enough  to  win  market  share.The  big  advances  are  less  likely  to  come 
easily  because  anyone  with  promise  in  today’s  capital-starved  and 
tight  customer  marketplace  has  a  hard  time  staying  around  long 
enough  to  have  that  big  impact.  Anytime  a  company  has  made  a  huge 
move  in  the  market,  it  has  disappeared  just  as  quickly  AFC,  bought  by 
Tellabs.  NetSolve  and  Actona,  swallowed  up  by  Cisco.  The  good  com¬ 
panies  will  get  eaten  before  they  get  too  big. 

With  such  a  focus  on  just  a  few  players,  the  chance  for  innovators  to 
get  to  market  is  nigh  impossible. We  hear  it  all  the  time:“We  will  only 
buy  from  a  major  player"  It’s  just  getting  worse,  not  easier  out  there. 

We’re  now  entering  a  period  that  likely  will  last  longer  than  we’d 


So  these  days  the  par  for  the  course  is  for  companies  to  team  up. 
We’re  seeing  the  most  interesting  partnerships  in  the  market,  and  it’s 
not  just  two  players  getting  together,  but  four,  five  and  six  players  get¬ 
ting  together  to  advance  against  a  No.  2.  And  that’s  what’s  needed  — 
bold  business  development  and  innovative  combinations,  where 
the  speed  and  simplicity  of  the  deal  is  to  be  emphasized. 

So  there  will  be  two  paths  to  success  in  the  market:  those  tactical 
innovators  who  do  something  small  and  reasonable  and  get  acquired 
before  they  get  too  big,  and  those  strategic  innovators  who  tackle  the 
big  guys  by  simply  outbuilding  their  vision  of  the  larger-scale  market. 

And  the  replaced  players?  They’ll  fall  hard  and  fast.  There  will  be 
several  No.  1,60%  market  share  players  who  will  be  gone  in  a  few 
years,  outplayed  by  more  nimble,  smaller-but-teamed-up  competi¬ 
tors.  These  forlorn  market  share  leaders  thus  become  part  of  the 
Land  of  the  Lost,  or  simply  Lost  (to  provide  a  more  current  pop  cul¬ 
ture  reference). 

Eat  or  be  eaten. Times  have  not  changed  that  much.  But  the  ability 
of  the  market  to  sustain  three  large  players  seems  to  have  passed. 
We’re  continually  moving  toward  twosomes.  If  you  aren’t  going  to  be 
happy  with  that  outcome,  then  you  need  to  start  voting  with  your  dol¬ 
lars  to  keep  innovation  alive  or  to  speed  the  death  of  those  who  can’t 
keep  up. 

Briere  is  CEO  of  TeleChoice,  a  market  strategy  consultancy  for  the 
telecom  industry.  He  can  be  reached  at  telecomcatalyst@ 
telechoice.com. 


Falling  fortunes 

Revenue  for  all  three  IXGs  has  plunged 
precipitously  over  the  past  few  years. 
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There  has  been  much  restate 
meet  of  revenues,  especially  by  MCI, 
which  has  yet  to  publish  its  2000  numbe 


Once-mighty 
interexchange 
carriers  AT &T, 
MCI  and  Sprint 
now  must  evolve 
or  face  extinction. 
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Last  quarter  was  not  kind  to  the  interex¬ 
change  carriers. 

AT&T  announced  a  loss  of  $7.1  billion  for 
the  third  quarter,  primarily  because  the  company 
is  writing  off  more  than  $1 1  billion  in  assets. 
AT&T  also  will  slash  12,300  jobs  this  year. 

MCI  reported  a  $3.4  billion  loss  for  the  third 
quarter,  primarily  because  of  asset  impair¬ 
ment  charges  of  $3.5  billion  for  the  same  peri¬ 
od.  The  carrier  is  rumored  to  be  seeking  a  buyer. 
Sprint  had  a  $1.9  billion  loss 
for  the  third  quarter  because 
of  previously  announced 
asset  impairment  charges  of 
$3.5  billion  and  a  $1.2  billion 
write-down  of  its  Multichannel 
Multipoint  Distribution  Service  spectrum. 

All  three  carriers  have  watched  their  long-distance 
business  crumble  and  are  retreating  from  traditional 
consumer  telephony  The  question  is,  what  will  it  take 

for  the  IXCs  to  survive?  Network 
World  asked  three  telecom 
experts  to  share  their  per¬ 
spectives  on  the  moves  these 
companies  should  take. 
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Reinvention  or  extinction? 


The  history  of  tele¬ 
com  is  replete  with 
many  once-vital 
companies  that 
have  failed  to  adjust  to  the 
times,  technology  and 
trends.The  fossil  record 
includes  Western  Union,  a 
BY  ALLAN  TUMOLILLO  throwback  to  another  era, 

Cable  &  Wireless  as  it 

devolves  into  a  single-island  denizen,  and  1990s  newcom¬ 
ers  such  as  PSINet,  NorthPoint  Networks,  WorldCom  and 
scores  of  others. 

What  separates  the  defunct  and  soon-to-be-defunct  car¬ 
riers  from  those  more  likely  to  survive  is  a  willingness  to 
adapt  and  acquire  characteristics  that  let  it  compete  and 
prosper  in  a  changed  environment. 

The  top  three  non-RBOC  long-distance  companies  in  the 
U.S.  are  AT&T,  MCI  and  Sprint.  Each  is  pursuing  a  different 
path  to  the  future.  MCI  faces  the  rockiest  —  one  that  might 
lead  it  straight  over  a  cliff,  and  a  rather  steep  one  at  that. 

AT&T:  A  new  identity  based  on  VoIP 

Over  the  span  of  a  single  generation  AT&T  has  gone 
from  a  colossus  to  a  rather  small  and  weak  operator.  It 
pursued  the  wrong  strategies  time  and  again  for  20  years: 

•  Hanging  onto  Western  Electric  for  years  when  it 
should  have  spun  out  on  Day  1  after  divestiture  in  1984. 

•  Handing  over  its  wireless  licenses  to  the  RBOCs  at 
divestiture  (which  became  most  of  Verizon  Wireless  and 
Cingular  except  for  the  assets  that  were  McCaw  Cellular, 
Vanguard  Cellular  and  GTE  Cellular). 

•  Spinning  out  its  recently  acquired  McCaw  Cellular/ 
Vanguard  Cellular,  the  one  industry  sector  that  demon¬ 
strated  growth  and  value  creation. 

•  Acquiring  TCI  and  MediaOne  under  the  reign  of  CEO 
Michael  Armstrong  in  what  had  to  be  the  most  foolish  set 
of  acquisitions  in  the  history  of  telecom,  then  admitting 
defeat  and  selling  them  at  a  loss  to  Comcast. 

•  Failing  to  join  with  other  industry  participants  in  a  full- 
scale  assault  on  the  regulatory  foundations  of  RBOC  dom¬ 
inance,  letting  the  RBOCs  fight  tactically  as  needed  and 
ultimately  be  victorious. 

Now  that  necessity  is  forcing  AT&T’s  hand,  we  see  at 
least  an  opportunity  to  create  a  new  identity  AT&T’s 
alliance  in  marketing  its  CallVantageVoIP  platform  with 
the  cable  TV  industry  is  essential  to  the  carrier.  If  this 
alliance  can  forestall  cable  operators  from  deploying 
their  own  VoIP  platforms,  AT&T  becomes  the  partner  to 
the  cable  industry  and  its  target  audience  of  more  than 
60  million  households. 

If  this  alliance  stumbles,  AT&T  will  falter  with  it.  It  cannot 
survive  in  the  consumer  sector  as  an  independent 
provider  of  VoIP  services  except  at  bargain  basement 
prices.  Allying  with  cable  firms  that  can  bundle  AT&T  VoIP 
with  basic  cable,  ISP  services,  broadband  and  HDTV 
might  be  the  carrier’s  last  chance  at  independence. 

On  the  enterprise  side,  it  is  becoming  obvious  that  a) 
companies  are  not  spending  the  way  they  used  to  on  net¬ 
working  and  equipment;  and  b)  the  RBOCs  are  finding  it 
difficult  to  translate  success  in  the  consumer  markets  into 
success  in  the  enterprise  markets.This  is  where  AT&T 
might  find  a  decent  and  interesting  strategy  that  outflanks 
the  RBOCs:  ally  with  the  big  outsourcers. 

When  a  company  outsources  IT  to  an  IBM  or  HP  or 
Computer  Sciences  Corp.  (CSC),  the  network  side  is  soon 
to  follow.  Banking  giant  Citigroup  operates  in  more  than 
100  countries,  has  200  million  customer  accounts  and 
processes  $1  trillion  in  financial  transactions  every  day  A 
CSC,  HP  or  IBM  would  find  an  AT&T  network  invaluable 
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in  reaching  many  of  those  100-plus  countries. 

Because  no  one  network  exists  that  covers  the  globe, 
AT&T,  which  has  the  most  experience  globally  would  be  a 
natural  fit.  RBOCs,  on  the  other  hand,  have  almost  no 
international  capabilities  and  offer  a  poor  fit  for  out¬ 
sourcers. 

MCI:  Should  it  merge  with  AT&T? 

When  this  operation  was  known  as  WorldCom,  it  was 
obvious  to  many  that  the  firm  had  become  delusional. 
After  the  fact,  we  realize  that  a  lot  of  the  delusion  was 
actually  cover-up  of  accounting  “irregularities." 

When  Michael  Capellas  came  in  from  HP  we  thought 
the  company  would  become  a  catalyst  for  the  industry 
under  his  astute  leadership.  Boy  were  we  wrong.  Apparent¬ 
ly  Capellas  is  content  to  simply  have  gotten  MCI  out  of 
bankruptcy  and  now  he  wants  to  sell  the  company  That 
leaves  most  observers  with  little  to  say  about  strategy 
other  than  it  is  one  of  self-immolation. 

MCI  is  on  the  block,  and  the  only  question  is  whether 
anyone  wants  the  company  A  link  with  AT&T  is  the  best 
outcome  for  MCI  (and  for  AT&T).  It  would  give  the  com¬ 
bined  entity  far  more  clout  with  cable  providers  by  bring¬ 
ing  to  the  table  the  combined  consumer  divisions  of  the 
two  companies.  It  also  would  have  the  biggest  enterprise 
network  reach,  which  would  force  the  RBOCs  into  spend¬ 
ing  heavily  to  replicate  those  assets.  From  the  FCC’s  point 
of  view,  such  a  deal  would  encourage  competition  and 
investment. 

Sprint:  Wireless  is  the  answer 

Sprint  is  a  three-headed  beast  with  local  phone  compa¬ 
nies,  long-distance  and  mobile.  Financial  markets  give  lit¬ 
tle  value  these  days  to  local  and  long-distance  and  give 
much  value  to  wireless.  Once  Sprint  ended  the  tracking 
stocks  and  issued  a  unified  stock,  the  company’s  financial 
fortunes  improved  dramatically. 

The  carrier  is  offering  its  wireless  network  for  wholesale 
re-branding  by  other  entities.  While  it  might  end  up  com¬ 
peting  against  itself.it  is  reaching  customers  it  would  not 


be  able  to  capture  on  its  own. 

Sprint  should  offer  the  AARP  a  deal  it  couldn’t  refuse: 
wholesale  cellular  service  to  any  and  all  of  AARP’s  35 
million  members,  branded  as  AARP  After  all,  AARP  has 
attacked  the  cellular  industry’s  indifference  to  the 
senior  population,  its  incomprehensible  calling  plans, 
and  somewhat  useless  and  thick  cell  phone  instruction 
manuals. 

Sprint’s  long-distance  business  is  in  decline  and  it  has 
little  in  the  way  of  metropolitan  assets, so  it  will  have  dif 
ficulty  competing  with  the  RBOCs,  AT&T  and  MCI  for 
enterprise  customers. 

Sooner  or  later,  we  expect  Sprint  to  become  essentially 
a  wireless  company.  Its  consumer  long-distance  base  is 
increasingly  concentrated  within  its  local  phone  compa¬ 
ny  territories,  and  this  is  not  a  prescription  for  growth. 

Although  Sprint  went  through  the  process  of  combin¬ 
ing  its  two  tracking  stocks,  it  will  move  to  sell  its  local 
properties  and  simply  exit  the  consumer  long-distance 
business,  writing  down  whatever  assets  it  has  to. 

A  new  industry 

IP  technology  separates  service  provisioning  from 
access  provisioning.  In  a  sense  this  might  heip  compa¬ 
nies  such  as  AT&T  and  begin  to  hurt  companies  like  the 
RBOCs.This  separation  also  forces  down  pricing. Vonage 
and  Skype  exist  without  access  assets  and  offer  services 
at  low  prices  or  in  the  case  of  Skype,  tree. 

Service  bundles  are  now  the  rage  for  their  ability  to 
cut  pricing  across  the  board.  AT&T,  especially  if  merged 
with  MCI,  can  be  a  very  large  service  provider  allied 
with  cable. 

It  is  even  possible  to  see  a  complete  break-up  of  AT&T 
and  MCI  into  a  merged  consumer  company  and  a  sepa¬ 
rate  enterprise  company,  each  pursuing  different  markets 
that  have  no  logical  connection  to  each  other. 

Tumolillo  is  COO  of  Probe  Financial  Associates,  providers 
of  independent  investment  research  on  telecom  and  IT.  He 
can  be  reached  at  tumoIHIo.allan@probegrp.com 
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BY  SHALLYBANSAL  STANLEY 


efore  the  Tele¬ 
communications 
Act  of  1996,  the 
future  looked 
bright  for  AT&T,  MCI  and 
Sprint.  Executives  at  the 
interexchange  carriers 
wore  their  rose-colored 
glasses  through  countless 
mergers,  divestitures  (even 

trivestitures)  and  global  alliances,  and  straight  into  the 
harsh  realities  of  the  post-dotcom  era  . . .  blind  to  what  lay 
ahead. 

When  the  Telecom  Act  of  ’96  passed,  all  the  pundits  pre¬ 
dicted  that  cable  would  be  king  and  serve  as  the  single 
line  into  homes  and  businesses.  What  they  didn’t  foresee 
was  that  the  local  exchange  carriers  (LEC)  were  next  in 
line  for  the  throne. Verizon  and  SBC  consolidated  their 
power,  their  coffers  and  their  customer  bases.Their  vision 
was  crystal  clear:  grow  through  acquisition,  diversify  and 
focus  on  the  consumer  market. 

The  big  three  must  look  inward  at  their  true  assets  and 
exploit  their  strengths  to  replace  consumer  and  corporate 
long-distance  revenue.The  traditional  interexchange 
voice  business  is  disappearing  fast  and  there’s  nothing 
they  can  do  to  stop  it. 

Wireless  voice  and  data  is  booming.The  wireless  device 
obviates  the  need  to  have  a  watch,  an  alarm  clock,  an 
address  book,  a  calendar,  a  pager,  a  calculator  and  a 
home  telephone  line. With  cell  coverage  improving,  thou¬ 
sands  of  people  have  disconnected  their  home  phone 
lines  and  use  their  cell  phones  instead.  Many  businesses 


is  wireless,  VoIP 


have  opted  not  to  provide  staff  with  office  phones  and 
simply  have  employees  use  cell  phones.They  save  money 
and  find  it  easier  to  have  just  one  number. 

Emerging  services  such  as  British  Telecom’s  BluePhone 
in  Europe  extend  the  use  of  cell  phones  throughout 
homes  or  offices.  Consumers  love  it  and  can’t  get  enough. 
The  enterprise  is  sure  to  follow. Verizon  Wireless,  Cingular, 
T-Mobile  and  Sprint  PCS  love  it  all  the  way  to  the  bank. 
AT&T  and  MCI  watch  with  despair. 

It  gets  worse.The  would-be  kings  of  telecom  are  rising  to 
the  challenge.  After  making  needed  investments  in  their 
infrastructures,  the  consolidated  cable  companies  are 
launching  comprehensive  VoIP  services  that  are  drastical¬ 
ly  driving  down  already  rock-bottom  long-distance  prices. 
If  that  weren’t  enough,  the  LECs  are  bundling  whatever 
long-distance  market  is  left  into  their  local  voice  services 
for  an  additional  $10  to  $15  per  month. The  IXCs  simply 
can’t  compete  on  price  and  aren’t  able  to  justify  higher 
prices  for  their  services.They  have  to  look  at  other  means 
for  survival. 

Having  sold  off  its  cable  interests  and  wireless  business, 
AT&T  clings  to  the  hope  that  it  can  compete  with  VoIP 
providers  such  as  Vonage.  It  promises  to  be  a  bitter  battle. 
To  compete,  AT&T  must  quickly  reduce  its  operating  cost 
structure  to  match  its  new  (smaller)  revenue  streams.The 
once  all-powerful  monopoly  needs  to  transform  itself  into 
an  emerging  player  to  survive. 

While  MCI  has  emerged  from  Chapter  1 1,  its  true 
assets  are  harder  to  find. To  its  credit,  the  cash-poor,  cus¬ 
tomer-hungry  company  managed  to  hold  onto  more  of 
its  customer  base  than  anyone  expected.  Unfortunately, 
it  wasn’t  enough. 


A  true  voice,  data  and  Internet-based  firm,  MCI  faces  stiff 
competition  and  price  pressures  on  all  fronts.  Its  one  shin¬ 
ing  star,  UUNET,  promises  to  keep  the  company  afloat 
meeting  the  growing  demand  for  VPN  services  until  it  can 
find  a  buyer.  It  has  been  rumored  that  MCI  has  been  put 
on  the  sale  block  with  an  asking  price  of  $6  billion.  It  may 
simply  be  a  matter  of  time  until  MCI  is  sold  piece  by 
piece  to  the  higher  bidder. 

Sprint,  the  underdog  of  the  bunch,  has  managed  to  hold 
its  own  throughout  a  period  when  its  competition  simply 
imploded.  Plagued  with  failed  attempts  to  sell  itself,  first  as 
a  member  of  Global  One  (a  partnership  with  Deutsche 
Telekom  and  France  Telecom)  and  then  later  in  its  failed 
WorldCom/Sprint  merger,  Sprint  has  been  forced  to  go  it 
alone.  Sprint  admirably  has  retained  its  traditional  corpo¬ 
rate  data  customer  base  and  survived  the  long-distance 
voice  decline  because  of  its  growing  wireless  business. 
While  the  smallest  of  the  three,  Sprint’s  true  assets  are 
worth  more  as  an  ongoing  concern  than  both  of  its  more 
sizeable  competitors. 

AT&T,  MCI  and  Sprint  must  determine  what  they  will  be 
called  next.  As  IXCs  become  a  thing  of  the  past,  these  com¬ 
panies  must  either  re-invent  themselves  or  cease  to  exist. 
There  aren’t  a  lot  of  choices  and  MCI  has  already  cashed 
in  its  chips.  AT&T  and  Sprint  should  closely  examine  strate¬ 
gic  partnerships  or  acquisitions  that  let  them  capitalize  on 
the  growth  of  wireless  and  mobile  technologies. 

The  future  is  not  bright,  but  a  glimmer  of  hope  remains. 

Bansal  Stanley  is  CTO  of  Greenwich  Technology  Partners, 
an  IT  professional  sewices  provider.  She  can  be  reached  at 
sstanley@greenwichtech.  com. 


Consumer  VoIP  is  key  for  AT&T 


AT&T  —  Ma  Bell  — 
isn’t  the  phone 
company  any- 
more.This  is  a 
powerful  indication  that 
something  major  is  going 
on  in  the  service  pro¬ 
vider  market,  and  that 
BY  THOMAS  NOLLE  interexchange  carriers 

such  as  AT&T  are  going 

to  have  to  change  to  survive. 

What’s  going  on  is  the  commoditization  of  traditional 
services  such  as  voice  and  even  enterprise  data.  That 
translates  to  double-digit  revenue  losses  unless  carriers 
can  tap  new  sources  of  revenue.The  consumer  market  is 
essential  to  this  initiative.  Each  of  the  IXCs  has  to  create 
a  role  for  itself  in  the  broadband-enabled,  content-direct¬ 
ed,  consumer  future. 

AT&T  is  the  largest  of  the  IXCs  and  has  the  strongest 
position  with  enterprise  users.  For  AT&T,  the  optimum 
strategy  is  a  two-pronged  assault  on  the  future  content 
market.  On  the  consumer  side,  AT&T  must  make  its 
broadband  VoIP  offering  a  smashing  success,  guarantee- 
mi?  AT&T  a  foothold  with  those  users  who  make  the 
'  wdbarsd  transition. That  consumer  foothold  then  can 
;  developed  to  include  content,  video  telephony  and 


Fc,i  die  second  prong,  AT&T  needs  to  start  moving  its 
ourreni  enterprise  users  from  low-level  transmission  ser¬ 
vices  to  high-level  application  services.The  framework 


for  application  services  and  the  framework  for  con¬ 
sumer  content  distribution  are  much  the  same,  and  both 
are  based  on  the  Web  services  standards  now  being 
adopted  worldwide. 

Content  is  a  two-sided  game: There  are  consumers  and 
suppliers.  AT&T’s  current  enterprise  customers  are  the 
suppliers,  and  if  they  can  be  made  to  supply  content 
through  AT&T,  then  the  maturing  of  AT&T’s  consumer 
VoIP  offering  into  a  broader  content-based  relationship 
can  work. 

For  Sprint,  it’s  all  about  wireless.  Wireless  services  are 
holding  their  profit  margins  better,  taking  the  pressure 
off  in  the  near  term.  If  Sprint  starts  offering  3G  wireless 
handsets  with  at-home  Wi-Fi  capability,  that  pulls  the  car¬ 
rier  into  broadband  homes  and  gives  it  a  shot  at  evolv¬ 
ing  content  opportunity. 

Sprint  then  can  peddle  its  access  to  the  highly  mobile 
teen  and  young  adult  market  to  content  providers  to 
promote  relationships  with  Sprint.  It  might  be  years 
before  anyone  watches  “Lord  of  the  Rings”  on  a  wireless 
handset,  but  music  videos  and  concerts  are  content  too, 
and  Sprint  owns  perhaps  the  best  on-ramp  to  the  market 
for  those  types  of  content  with  its  youth  following. 

MCI  has  perhaps  the  clearest  path  and  perhaps  the 
hardest.The  former  poster-company  for  the  Internet  has 
fought  through  accounting  scandals  and  Chapter  11. The 
network  that  was  the  center  of  the  Internet  is  intact,  but 
the  company  has  faltered,  and  the  “we’re  the  Internet” 
association  has  weakened.  MCI  needs  to  become  the 
Internet  again. The  carrier  must  demonstrate  not  only 


that  it  can  be  a  player  in  both  the  consumer  and  pub¬ 
lisher  side  of  the  Internet  but  also  that  it  can  take  the 
Internet  to  a  new  and  profitable  place. 

Like  AT&T,  MCI  has  good  corporate  clients.  Like  AT&T, 
MCI  has  plans  to  move  these  customers  up  to  managed 
and  application  services.  But  unlike  AT&T,  MCI  has  no 
strong  consumer  broadband  offering,  no  VoIP  It’s  proba¬ 
bly  a  good  thing  that  the  EU  has  reversed  itself  on  the 
Sprint/MCI  merger  it  once  barred;  MCI  is  probably  the 
IXC  most  in  need  of  a  partner. 

There  will  be  a  lot  of  IXC  focus  on  the  enterprise  in  the 
next  year,  a  lot  of  talk  about  how  moving  enterprise  buy¬ 
ers  to  higher-level  services  will  restore  profits.  For  a  time, 
that’s  true.  All  the  IXCs  need  a  near-term  profit  boost,  but 
they  need  a  place  in  the  consumer  market  —  in  con¬ 
sumer  broadband  —  in  the  future  or  all  the  enterprise 
business  won’t  stem  the  negative  tide. 

Unbundling  might  be  dead,  but  every  single  IXC  has 
the  option  to  wholesale  RBOC  DSL  at  a  modest  dis¬ 
count.  Bundle  that  with  VolRwith  dual-mode  3G/Wi-Fi 
phone,  with  consumer  electronics  content  delivery,  and 
you  have  a  business.There  is  life  beyond  voice,  beyond 
legacy  services,  but  not  much  hope  within  those  old 
boundaries.  None  of  the  IXCs  have  to  fail,  but  those  that 
don’t  recognize  the  importance  of  the  consumer/con¬ 
tent  market  to  their  future  probably  will. 

Nolle  is  president  of  CIMI,  a  technology  assessment  firm 
in  Voorhees,  N.J.  He  can  be  reached  at  tnolle@ 
cimicorp.com. 


SINGLE  PLATFORM, 
MULTIPLE  CREDENTIALS 


ONE  SOLUTION  FOR 
WINDOWS  LOG-ON,  VPN, 
AND  WI-FI  ACCESS 
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NEXT-GENERATION  TOKEN 


OPEN  STANDARDS, 
PROVEN  INFRASTRUCTURE 


<*)  UP  TO  40%  LOWER  TCO 


Introducing  VeriSign  Unified  Authentication 


Introducing  VeriSign'  Unified  Authentication:  an  open,  extensible  platform  plus 
next-generation  devices,  all  designed  to  integrate  with  your  existing  infrastructure. 
Deploy  multipurpose  credentials  that  support  Windows'  log-on,  VPN,  Wi-Fi  roaming, 
and  application  security.  Scale  your  network  security  to  meet  the  authentication 
demands  of  employees,  customers,  and  business  partners.  And  reduce  your  TCO  up 
to  40%  — without  getting  locked  into  a  proprietary  system.  For  more,  visit 
www.verisign.com/unified-authentication.  VeriSign.  Where  it  all  comes  together.™ 


©2004  VeriSign.  Inc.  All  rights  reserved.  VeriSign.  the  VeriSign  logo.  "Where  it  all  comes  together,"  and  other  trademarks,  service  marks,  and  designs  are  registered  or  unregistered 
trademarks  of  VeriSign  and  its  subsidiaries  in  the  United  States  and  in  foreign  countries.  Windows  is  a  registered  trademark  of  Microsoft  Corporation. 


TEST 


juniper’s  NetScneen 
Secure  Meeting 

applance 


Juniper  spreads  security  profile  to 
Wei)  conferencing 

IB  BY  TRAVIS  BERKLEY,  NETWORK  WORLD  LAB  ALLIANCE 

f  you’re  experimenting  with  Web  conferencing,  first  look  at  a  hosted  service, 
such  as  WebEx  or  Microsoft  Live  Office.  But  the  costs  can  add  up  quickly  espe¬ 
cially  if  you  have  many  users  across  your  company  engaging  in  Web  confer¬ 
encing.  We  found  Junipers  NetScreen  Secure  Meeting  appliance  (SM-3000)  makes 
both  performance  and  economic  sense  for  midsize  to  large  firms  looking  to  add 
Web  conferencing  abilities. 


Simple  setup 

The  SM-3000  is  a  1U,  rack-mounted 
appliance  that  connects  quickly  and  eas¬ 
ily  into  your  network  infrastructure.  A  ser¬ 
ial  console  connection  is  used  briefly  to 
configure  the  basics:  network  configura¬ 
tion,  choosing  an  administrator  name/ 
password  and  setting  the  host  name. 

The  first  time  you  connect,  you  will 
need  to  set  the  time  zone  and  feed  it  your 
license  key  From  that  point  on,  you  use 
an  SSL  connection  to  drive  the  compre¬ 
hensive  and  customizable  Web-based 
dashboard  that  provides  an  excellent 
summary  of  what  the  SM-3000  is  doing 
and  how  it’s  performing. 

You  can  create  and  manage  all  your 
users  in  the  locally  stored  database.  The 
SM-3000  can  authenticate  users  against 
several  external  directory  services.  We 
pointed  the  SM-3000  to  a  Microsoft  Active 
Directory  server  and  a  Novell  eDirectory 


Company:  Juniper  Networks, 
vww.juniper.net  Cost:  Starting  at  $15,000 
for  50  concurrent  users.  Pros:  Easy  setup; 
easy  to  manage;  flexibility  in  meeting 
control.  Cons:  Cannot  record  meetings; 
no  polling. 

The  breakdown 

Setup  20%  5 
Management  20%  5 
Conferencing  features  20%  3 
Customization  20%  4 
Client  variety  20%  4 
TOTAL  SCORE  4.2 


server,  but  the  SM-3000  also  can  authenti¬ 
cate  against  generic  Lightweight  Direc¬ 
tory  Access  Protocol,  RADIUS  and  other 
directory  services  (see  How  we  did  it  at 
www.nwfusion.com,  DocFinder:  4934). 
You  are  free  to  define  numerous  roles 
within  the  SM-3000,  defining  who  can 
simply  participate  and  who  can  create 
new  meetings. 

The  SM-3000  is  flexible  and  lets  you 
modify  scores  of  settings  to  provide  the 
level  of  security  you  need.  On  an  internal 
deployment, you  can  relax  browser  cook¬ 
ie  requirements  and  allow  roaming 
addresses.  But  if  you  want  the  outside 
world  to  access  the  SM-3000,  you  might 
want  to  tighten  things  up,  such  as  man¬ 
dating  longer  SSL  key  lengths  and  not 
using  persistent  browser  cookies. 

Getting  the  users  ready 

Users  can  participate  in  the  Web  con¬ 
ference  with  a  browser  equipped  with  a 
Java  Virtual  Machine  (JVM). 

Meeting  participants  fall  into  two  cate¬ 
gories:  authenticated  or  guests.  Authenti¬ 
cated  participants  will  authenticate  to  the 
SM-3000,  locally  or  through  one  of  your 
directory  services.  Once  authenticated, 
users  are  greeted  with  a  schedule  of  the 
day’s  meetings  to  which  they  are  invited. 
If  they  have  rights  to  create  new  meetings, 
buttons  appear  that  can  schedule  meet¬ 
ings  or  launch  an  instant  meeting. 

Invitations  are  sent  to  external  users 
(clients  and  customers)  via  e-mail.  A  link 
in  the  e-mail  takes  them  to  a  sign-in 
screen  for  that  meeting.The  meeting  num¬ 
ber  is  encoded  in  the  URL,  and  the  par¬ 
ticipant  must  provide  the  generated  pass¬ 
word  for  the  meeting  and  his  name. 

It  is  interesting  that  security  must  be 
relaxed  from  the  defaults  to  allow  guest 
users.  The  defaults  specify  that  only 
authenticated  users  can  participate  in 
meetings,  and  only  people  who  are  invit¬ 
ed  can  join.You  first  must  let  unauthenti¬ 
cated  guests  connect  and  then  let  meet¬ 
ings  be  joined  with  a  password.  For  exam¬ 


ple,  if  you  wanted  a  client  to  join  a  meet¬ 
ing,  he  would  receive  an  e-mail  invitation 
to  the  meeting  and  how  to  link  to  it.  He 
would  connect  as  an  unauthenticated 
guest  and  would  only  be  allowed  to  join 
if  he  could  supply  the  meeting  password. 

For  true  security  the  invitation  can  be 
sent  without  the  password. 

The  user  who  starts  the  meeting  is 
called  the  Conductor  and  is  the  only  one 
required  to  be  an  authenticated  user. The 
conductor  has  control  over  all  aspects  of 
the  meeting,  such  as  when  it  ends  and 
who  has  what  permissions.  As  other  par¬ 
ticipants  join,  they  receive  Viewer  permis¬ 
sions  and  can  watch  everything  that  hap¬ 
pens.  There  are  two  remaining  permis¬ 
sions  that  the  Conductor  can  choose  to 
share,  Presenter  and  Controller  rights. 
Presenters  can  share  an  application  from 
their  desktops  for  others  to  view.  If  the 
Presenter  would  like  someone  else  to 
remotely  control  the  application, 
Controller  rights  are  granted.  In  a  team 
presentation,  team  members  can  take 
turns  controlling  the  application. 

While  it’s  true  that  participants  only 
need  any  browser  with  a  JVM,  if  they 
want  to  be  more  than  viewers,  we  suggest 
using  Internet  Explorer  on  a  Windows 
machine.The  system  works  fine  on  a  Mac 
OS  X  device,  but  there  are  some  known 
issues  with  the  built-in  Safari  browser.  If 
you  run  a  meeting  on  various  flavors  of 
Linux,  you  can  only  be  a  participant. We 
used  Red  Hat  and  SuSE  distributions. 

Meetings  with  the  SM-3000  revolve 
around  sharing  applications.  There  is  a 
chat  function  built  into  the  client,  but 
that’s  it.  The  client  is  downloaded  as  par¬ 
ticipants  join  the  meeting,  so  there  is 
nothing  to  install  on  client  machines.  If 
you  want  to  use  a  whiteboard,  the  con¬ 
ductor  needs  to  launch  the  Windows 
Paint  application.  If  you  want  to  poll 
members,  you’re  out  of  luck.  But  if  you 
want  to  share  applications,  the  SM-3000 
works  very  well. 

Presenters  can  share  applications  in  a 


Juniper's  1U  Web  conference  appliance  is 
easy  to  set  up  and  manage. 


full  screen,  but  the  best  resolution  is  a 
modest  size  (1,024  by  768  pixels).The  sys¬ 
tem  can  go  higher,  but  the  larger  the  pre¬ 
senter’s  desktop,  the  more  bandwidth  it 
takes  to  keep  updating  as  application 
changes  occur.  If  participants  have  a 
smaller  screen,  they  can’t  see  everything 
without  scrolling. A  setting  on  the  SM-3000 
lets  you  limit  the  color  palette  to  16  bits 
from  32  bits  to  save  bandwidth. 

Other  drawbacks  include  no  ability  to 
record  meetings,  or  the  associated  chat 
text  for  later  playback.  If  the  presenter  just 
shares  a  PowerPoint  presentation,  it  is 
easy  to  give  the  same  presentation  to  an¬ 
other  person  at  a  different  time.  But  if  the 
meeting  is  more  free  form,  such  as  draw¬ 
ing,  chatting  and  working  collaboratively, 
it  becomes  more  difficult  to  re-create. 

The  SM-3000  excelled  at  transferring 
control  to  other  meeting  participants. 
This  function  makes  the  system  a  great 
way  to  remotely  troubleshoot  a  partici¬ 
pant’s  desktop.  The  advantage  is  that  a 
Web  browser  is  all  that’s  needed  on  the 
remote  machine  for  remote  control  to 
happen.  Further, you  can  conduct  an  SSL- 
encrypted  sharing  session  without  the 
hassle  of  installing  VPN  or  other  security 
software  ahead  of  time. 

The  SM-3000  might  not  be  the  ultimate 
Web  conferencing  device,  but  it  does 
what  it  was  designed  to  do  very  well.  Easy 
to  set  up  and  manage,  the  system  gets 
you  up  and  running  meetings  in  a  short 
time.  It  shares  applications  very  well  and 
provides  great  flexibility  in  letting  partici¬ 
pants  control  the  meeting. 

Berkley  is  the  manager  for  LAN 
Support  Services  at  the  University  of 
Kansas.  He  can  be  reached  at  berkley@ 
ku.edu. 


Auto  Tracking  Feature 
in  all  models 


High  speed  economical 
transmission  up  to  1.25Gbps 

Provides  High-quality,  reliable 
wireless  communications 
up  to  2km  with  Auto  Tracking 

Requires  no  radio  frequency 
allocations,  permits  or  licenses 

Highly  secure  data  links 

Protocol  independent,  like 
fiber  optic  cable 

Installation  and  operating  cost 
are  much  lower  than  installing 
fiber  optic  cable 


W*  J  '  w* 

State-of-art  data  transmission  at 
1.25Gbps  for  Gigabit  Ethernet  netwc 

Transmission  distance  from  lOOm 

to  1000m 

3R  Function  (Re-shaping.  Re-timing, 
Re-generating) 


•  Provides  high-quality,  reliable 
wireless  communications  from 
100m  to  2km 

•  Wide  range  of  data  speeds  from 
25Mbps  to  156Mbps 

•  Auto  Tracking  Feature 


•  Economical  FSO  for  data 
transmission  from  20m  to  500m 

•  Wide  range  of  data  speeds  from 
25Mbps  to  156Mbps 

•  Auto  Tracking  Feature 

•  DT-MNG100,  Management  Board 


breakthrough: 

CANOBEAM  COMBINES  HIGH-TECH  WITH  LOW  PRICES 


canobeAm 

DT-100  Series 


built-in 


DT-MNG100;  Management  Board 
built-in 


•  Auto  Tracking  Feature 

•  DT-MNG100,  Management  Board  built-in 


Find  out  more  at  canobeam.com 


KNOW  HOW 


1-800-321-4388  (Canada:  905-795-2012) 


©2004  Canon  USA.  loc.  Canon  and  Canon  Know  How  are  registered  trademarks  df  Canon  Inc,  in  the  United  States 

and  may  also,  be  registered  trademarks  Or  trademarks  in  other  countries. 
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Server  operating 
systems 


Novell  serves  up  an  operating 
system  winner  with  SLES  9 

■  BY  TOM  HENDERSON,  NETWORK  WORLD  LAB  ALLIANCE 

ur  tests  of  Novell’s  SuSE  Linux  Enterprise  Server  Version  9  —  we  tested  revision  9.1  of 
the  server  software  —  show  it  to  be  polished,  faster  and  supporting  a  wider  breadth 
of  applications  than  previous  versions  we’ve  tested. These  advances  are  underscored 
by  improved  administration  tools,  compatibility  with  several  CPU  configurations,  and 
connectivity  with  Novell-based  add-on  management  and  policy  enforcement  applications. 


This  version  of  Linux  —  which  earns 
our  Clear  Choice  Test  designation  — 
could  make  Windows  administrators 
who  are  still  hesitant  about  widespread 
Linux  deployment  to  take  serious  notice. 

Organizations  using  Microsoft’s  ASP 
Net  application  infrastructure  can  port 
their  applications  to  SLES  9  via  the  new 
SuSE  Linux  software  developers  kit. 
Novell’s  acquisition  of  Ximian  brings  a  C# 
compiler  to  SLES  9  and  compatibility 
with  ASPNet  Web  applications. 

SLES  9  performs  numerous  dependen¬ 
cy  checks  at  application  installation  time 
via  a  revamped  administrative  interface, 
still  called  YaST  (Yet  Another  SetUp  Tool). 
Adding  server  applications  and  updates  is 
simplified  and  safer.  SLES  9  contains 
many  server  service-oriented  applica¬ 
tions, such  as  DHCPPostFix  Mail  and  DNS, 


Company:  Novell,  www.suse.com  Cost: 
Single  server  with  up  to  two  CPUs  is 
$350  annually.  Single 
server  with  up  to  16 


NetworkWorld 


CPUs  is  $900 
annually.  Pros: 

Improved  manage¬ 
ment;  great  performer;  flexible  hardware 
and  software  support.  Con:  Some  minor 
installation  irritations. 


I  CLEAR  CHOICE  |Q 


I  he  breakdown 


mstallation/integration  25%  4.5 
Performance  25%  5.0 
Management/administration  25%  4.5 
Security  25%  4.5 
TOTAL  SCORE  4.63 


Novell’s  SLES  9  hits  on  performance  across  the  board 

Novell’s  SLES  9  server  operating  system  posted  serious  numbers  in 
our  Web-based  performance  tests,  besting  previous  operating  sytems 
tested  in  almost  all  tests  (see  past  results,  www.nwusion.com, 
DocFinder:  4927.)  The  increase  in  transactions  per  second  speaks  to 
a  strong  Linux  2.6.5  kernel  I/O  implementation  in  SLES  9. 

Transactions/second 


1,481 


1,520 


Maximum  open  TGP  connections/second 


84,388 


92,203 


96,551 


104,660 


Maximum  TGP  connections/second 


1,884 

1 

1,992 

2,026 

2,421 

as  have  prior  editions.This  isn’t  a  case  of 
distribution  becoming  bloated,  but  the 
basic  expectation  set  by  Novell  is  that  this 
server  operating  system  fits  several  net¬ 
work  and  application  server  profiles. 

Hardware  detection  has  improved 
over  previous  SuSE  Linux  versions  (see 
SuSE  Linux  8.0  test  at  www.nwfusion. 
com, DocFinder: 4921).We  installed  it  on 
several  typical  server  platforms  (see 
How  we  did  it,  DocFinder:  4922)  and 
found  that  when  a  hardware  vendor 
supplied  a  driver  kit,  detection  im¬ 
proved  dramatically  But  when  they  did¬ 
n’t  supply  the  kits,  we  received  odd 
errors.  SLES  9  displayed  incorrect 
default  kernel  choice  information  when 
we  installed  natively  on  an  HP  DL360G3 
dual-CPU  server,  but  actually  installed 
the  right  kernel.  We  found  no  abnormal¬ 
ities  in  hardware  compatibility 

The  default  server  applications  in¬ 
stalled  comprise  a  minimal  set  of  pro¬ 
grams  identical  to  all  three  supported 
CPU  platforms.  Happily  run  levels  and 
defaults  initially  were  installed  with  the 
most  conservative  possible  settings. 

We  applaud  this  methodology,  as  it 
forces  administrators  to  choose  what 
services  will  be  available  rather  than 
turning  them  on  automatically  and 
causing  potential  security  or  network 
services  interaction  problems.  Updated 
applications  don’t  affect  already-cho¬ 
sen  defaults  or  subsequent  security-ori¬ 
ented  settings.  Subsequent  downloads 
can  be  spawned  manually,  or  automati¬ 
cally  through  the  YaST  Online  Updater 
server,  citing  either  an  internal  or 
SuSE.com  update  source. 

Most  installers  will  choose  more  appli¬ 
cations  than  the  default  settings  provide, 
however.  Making  additional  choices  via 
YaST  before  or  after  installation  —  such 
as  adding  FTP  support  —  puts  in  the 
desired  application  and  checks  depen¬ 
dencies  so  other  libraries  or  components 
are  also  correctly  chosen. 

You  can  easily  build  secure  server 
images  for  distribution  to  other  servers 
on  the  network. 


■i  MSI  AMD/64  server  with  one  CPU 
H  Micron/NetFrame  server  with  two  CPUs 

Testing  performance 

Our  performance  tests  —  run  across 
four  server  platforms  —  comprised  a 
series  of  Web  usage  profiles,  including: 

•  Maximum  number  of  connections. 

•  Total  sustained  connections. 

•  Transactions  per  second. 

SLES  9  bested  all  server  operating  sys¬ 
tem  products  we’ve  tested  in  the  Intel/ 
Advanced  Micro  Devices  categories  (see 
graphic,  above).  As  in  previous  tests,  only 
default  Apache  and  operating  system  set¬ 
tings  were  used  in  an  IPv4  environment. 

The  increase  in  performance  is  largely 
due  to  the  2.6.5  Linux  kernel  SLES  9  is 
built  upon.  The  generic  AMD64  server 


raB  HP  DL380G3  server  with  two  CPUs 
■H  HP  DL580G2  server  with  four  CPUs 

performance  using  a  single  CPU  is  out¬ 
standing,  besting  all  previous  operating 
systems  tested,  save  one  instance.  This  is 
especially  noteworthy  because  past 
operating  system  tests  were  conducted 
on  a  dual-CPU  Intel  architecture.The  star¬ 
tling  increase  in  transactions  per  second 
also  speaks  to  better  kernel  I/O  as  imple¬ 
mented  in  SLES  9  and  gives  an  indication 
of  Web  transactional  I/O  of  static  pages. 

Managing  SLES  9 

System  management  provided  by  YaST 
is  the  core,  GUI-based  management 
application.  Administrators  can  manage 

See  Novell,  page  60 


MEANS  MORE  POW 


ProCurve  Networking  by  HP  offers  a  range  of  affordable 
gigabit-enabled  switches  that  is  second  to  none.  That 
means  you  can  get  better  performance  from  your  network 
along  with  better  performance  from  your  networking 
dollars.  Downloads  that  used  to  take  minutes  can  now  be 
done  in  seconds.  And  you  can  do  it  for  cents.  Not  dollars. 
That’s  high-availability  gigabit  performance  at  the  edge — 
not  just  the  core  of  your  network.  What’s  more, 
ProCurve  gigabit-enabled  switches  are  backed  by 
a  lifetime  warranty* — perhaps  the  best  in  the  industry. 
More  affordability.  More  choice.  More  productivity. 


Find  out  how  to  get  the  power  of  gigabit  for  less. 

Visit  www.hp.tradeups.com/procurvepromo  for  our  latest  gigabit  promotions. 
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HP  ProCurve  SWITCHES: 

2800,  3400. 4100  AND 

5300  SERIES 

♦Open  standards  enabling 
interoperability  and  ease 
of  integration 

♦Flexibility  of  stackable 
or  chassis  configuration 

•  Lifetime  warranty* 

♦Low  cost  of  owne  sh'p 

•Legendary  serdce  end  support 
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ProCurve  Networking 

HP  Innovation 


CLICK 


www.hp.tradeups.com/procurvepromo 


CONTACT 


your  local  HP  reseller 


♦Lifetime  warranty  applies  to  all  ProCurve  Products,  excluding  the  ProCurve  routing  switch  9300m  Series  and  Secure  Access  700wl  Series,  which  have  a  one-year  warranty  with  extensions  available.  ©2004  Hewlett-Packard  Development  Company.  L.P 
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continued  from  page  58 

Apache,  Samba,  Lightweight  Directory 
Access  Protocol  (LDAP),  Network  File 
System,  users,  package/application  installa¬ 
tion,  the  firewall  and  most  other  adminis¬ 


trative/management  settings.  YaST  com¬ 
pares  favorably  with  Windows  Server  man¬ 
agement,  albeit  without  strong  “wizards” 
that  Windows  Server  editions  offer.  Those 
desiring  the  command-line  interface 
method  can  manage  elemental  services, 
such  as  DNS,  LDAP  DHCP  and  Apache. 


SUES  9  also  can  create  multiple  instances 
of  Linux  within  the  same  hardware  (similar 
to  virtual  machines)  through  the  User 
Mode  Linux  (UML)  feature.  We  spawned 
multiple  sessions  with  UML  that  shared 
media  and  hardware  resources  using  a 
method  vaguely  similar  to  VMWare  ESX 


on  open  standards  and  fits  seamlessly 
k  configuration.  Voice,  data,  video,  and 


Server.  The  UML  virtual  machines  don’t 
have  the  same  depth  of  control  that 
VMWare  offers,  but  do  let  you  partition 
resources  (CPU,  disk,  identity  applications 
and  hardware)  that  can  permit  logical  iso¬ 
lation  of  desired  resources. 

SLES  9  also  can  partition  sessions  via 
UML,  so  an  application  hijack  can  be  con¬ 
tained  by  the  permissions,  password  or 
security  established  for  that  session,  rather 
than  for  the  system  as  a  whole.  This  means 
multiple  instances  of  applications,  such  as 
LAMP  (Linux/ Apache/MySQL/Php-perl) 
sessions,  can  be  hosted  more  safely 

In  turn,  the  UML  instances  can  be  cou¬ 
pled  to  the  security  established  through  the 
certificate  authority  and  remote  sessions 
via  OpenSSL  and  VPN  capabilities  session 
policy  managed  through  YaST 

Server  connectivity  enhancements  in¬ 
clude  the  Novell/SuSE  exclusive  imple¬ 
mentation  of  Service  Locator  Protocol 
(SLP), similar  to  and  compatible  with  the 
Apple-championed  Rendezvous  Proto¬ 
col.  We  found  SLP  simple  to  use,  although 
certain  Layer  2/3  Ethernet  switches  must 
be  reconfigured  to  use  it.  SLP  enhances 
directory  network  service  resource 
lookup  and  is  a  good  alternative  to  DNS 
and  Session  Initiation  Protocol  for  served 
applications. 

Several  features  make  SuSE  a  Clear 
Choice  winner.  It  outperforms  the  compe¬ 
tition.  Its  compatibility  list  is  strong.  Even 
though  there  are  a  few  exclusive  items,  it 
would  take  quite  some  time  to  assemble 
the  open  source  components  Novell  has 
put  in  the  SLES  9  framework  and  make 
them  all  run  together  cohesively  More¬ 
over,  the  YaST  improvements  will  give  GUI 
comfort  to  those  who  don’t  want  to  mem¬ 
orize  server  application  variants.The  com¬ 
bination  gives  SLES  9  far  wider  appeal 
than  previous  versions. 

Henderson  is  principal  researcher  for 
ExtremeLabs  of  Indianapolis.  He  can  be 
reached  at  thenderson@extremelabs.com. 


Lab  Alliance 


Henderson  also  is  a  member  of  the  Network 
World  Lab  Alliance,  a  cooperative  of  the  pre¬ 
mier  testers  in  the  network  industry,  each  . 
bringing  to  bear  years  of  practical  experience 
on  every  test,  For  more  Lab  Alliance  informa¬ 
tion,  including  what  it  takes  to  become  a 
partner,  go  to  www.nwfusion.com/alliance. 

Other  members:  Mandy  Andress,  ArcSec; 

John  Bass,  Centennial  Networking  Labs,  North 
Carolina  State  University:  Travis  Berkley, 
University  of  Kansas:  Jeffrey  Fritz,  University 
of  California,  San  Francisco;  James  Gaskin, 
Gaskin  Computing  Services;  Miercom,  network 
consultancy  and  product  test  center; 

Christine  Perey,  Perey  Research  & 

Consulting;  Barry  Nance,  independent  consul¬ 
tant.  David  Newman,  Network  Test;  Thomas 
Powell,  PINT.  Joel  Snyder,  Opus  One;  Rodney 
Thayer,  Canola  &  Jones. 
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Wireless  goodies  for  your  holiday  stockings 
By  Keith  Shaw 

Network  World  Wireless  Computing  Devices  Newsletter 


In  case  you  missed  it.  Network  World  published  its  fifth  annual  "Cool 
Yule  Tools"  holiday  gift  guide,  produced  by  yours  truly.  The  guide 
highlights  our  favorite  high-tech  toys  and  gadgets  from  the  year,  and 
offers  gift-giving  suggestions  for  overworked  network  executives. 

The  guide  always  has  its  share  of  wireless  devices,  PDAs,  smart  phones, 
etc.,  and  especially  devices  for  the  mobile  traveler.  Here  are  a  few  of 
our  favorites  from  this  year's  guide: 

*  Nokia  6820  cell  phone 

*  HP  iPaq  HX47Q5  Pocket  PC 


Find  this  article  at 

www.nwfusion.com/go/2wireiess.htmi 

For  other  great  newsletter  topics, 
go  to  www.nwiiision.com/go/nt1206.html 


We  Made  A 


Experience  Everything  WLANs  Can  Do  —  With  Chantry  Networks 

The  potential  of  wireless  technology  for  enhancing  all  aspects  of  our  lives  is 
absolutely  staggering.  Unfortunately,  given  their  limited  capabilities,  many  of 
today's  wireless  networking  solutions  leave  this  potential  essentially 
unfulfilled. 

But  Chantry  Networks  has  changed  ail  that. 


Delivering  on  the  promise  of  true  wireless  mobility 


Promising 
Technology 
Live  Up  To 
Its  Promise. 


Right  now,  we're  delivering  nothing  less  than  true  wireless  mobility. 

Chantry's  BeaconWorks™  product  suite  provides  the  industry's  top  mobile 
user  management  system  that  securely  integrates  with  existing  IP  networks 
to  offer: 


•  Superior  performance  in  scale,  capacity  and  throughput  for  "always 
on"  voice,  data  and  video  connectivity  —  seamlessly  —  regardless  of 
user  location 


Visit  www.chantrvnetworks.com  to  learn  how  BeaconWorks  can  help  you. 
After  all,  there's  a  lot  to  be  said  for  true  wireless  mobility  ...  and  that's  why 
we've  done  more  than  just  talk  about  it. 


Plug-and-play  design  and  out-of-the  box  compatibility  that  leverages 
investments  in  existing  networks  and  VPNs  —  for  optimized  TCO 


Simplified  network  management  through  network  virtualization 
that  allows  unparalleled  management,  security,  quality  of  service  and 
flexible  deployment  models  to  maximize  effectiveness  of  applications 
and  the  mobile  user's  wireless  experience 


Raritan's  Dominion™  KX.  Better  KVM  Over  IP. 

Holes  in  Swiss  cheese  mean  the  cheese  is  ripe.  Holes  in  security  mean  you're  the  one  who's  ripe  -  for  problems.  Unlike  some  other  KVM 
providers,  Raritan  encrypts  all  KVM  traffic  -  keyboard,  mouse,  AND  video  with  128-bit  RC4  encryption,  providing  you  with  the  most  secure 
solution  on  the  market.  With  Dominion  KX,  you  can  access,  diagnose  and  monitor  even  the  worst  server  problems  anywhere  in  the  world 
without  security  worries.  But  that's  not  the  only  reason  to  consider  our  newest  Dominion  product.  It's  a  plug-and-play  appliance;  it's  incredibly 
scalable;  it  works  even  when  your  network  is  down.  And  it  carries  Raritan's  19-year  heritage  of  Data  Center  innovation.  Which  means  you  get 
the  most  dependable  KVM  over  IP  solution,  instead  of  smelling  like  bleu  cheese. 


Test-drive  the  industry's  most  secure  KVM  over  IP  technology  and  get  your  copy  of  a  free  White  Paper; 
"Understanding  the  Security  Implications  of  Deploying  KVM  Over  IP" 


Call  1-800-724-8090  x1428  or  visit  us  at  Raritan.com/1428 


Th§  KX  Digital  KVM  Switch 
.is  a  cdre  building  block  of 
Mtan's  Complete  Data  Center 
Management  Solution. 


^26d4':Rai1taH-'CdfHputec  Inc.  Raritan,  Paragon,  .IP-Reach,  Dominion  and 
‘  .  CdmitiaiVK enter  are  trademarks  or  registered  trademarks  ot  Raritan  Computer,  Inc 


When  you're  ready  to  take  control 


Raising  a  glass  to  IT  alignment 

Diageo  North  America’s  CIO  describes  how  the  drinks  maker  uses  technology  to  drive  brand  growth. 


■  BY  BARBARA  CARLINI 

Diageo’s  IT  organization  is  going  through  a  period  of  change.  At  the 
core  of  our  transformation  is  our  vision  of  complete  IT  and  business 
alignment.  We’re  on  a  journey  to  become  a  seamless  extension  of 
our  business,  helping  to  drive  top-  and  bottom-line  growth. 

Formed  in  1997  by  the  merger  of  Grand  Metropolitan  and  Guinness,  Diageo  is  the  world’s 
leading  premium  drinks  business,  encompassing  top  brands  such  as  Smirnoff,  Johnnie 
Walker,  Guinness,  Baileys  and  Beaulieu  Vineyards.  And  while  Diageo  trades  in  more  than 
180  territories  globally  North  America  represents  some  37%  of  our  operating  profit. 

When  I  joined  the  company  as  North  America  CIO  in  2001,  we  were  in  the  midst  of  our 
Seagram  acquisition  and  had  just  sold  our  Pillsbury  and  Burger  King  units  as  part  of  our 
strategic  realignment  behind  premium  drinks.This  rapid  series  of  mergers  and  acquisitions 
left  Diageo  with  disparate  systems, environments  and  technologies. We  needed  to  establish 
a  common  foundation  across  our  business  units  through  an  integrated  platform. 

My  first  task  was  to  integrate  our  networks  and  systems  with  those  of  the  newly  acquired 
Seagram  business.  Part  of  this  effort  involved  delivering  a  standard  operating  environment 
to  all  3,000  Diageo  North  America  employees.  Everyone  now  uses  a  Compaq  Evo  laptop  or 
desktop  running  Windows  2000,  Outlook  2000  and  Office  2000  software.  We  also  standard¬ 
ized  desktop  images  to  cut  down  on  unsupported  software  installations.  With  Managesoft 
6.9,  we  can  upgrade  systems  and  software  all  at  once  and  remotely  whereas  previously  this 
was  a  manual  process.  Our  employees  have  greater  mobility  and  are  able  to  work  seam¬ 
lessly  from  any  of  Diageo’s  150  locations  worldwide. 

We  implemented  SAP  in  2002  and  embarked  on  a  multi-phased  effort  to  standardize 
our  infrastructure  from  four  ERP  environments  to  one  and  build  a  common  operating 
language  across  our  business.  In  2003,  we  decided  to  outsource  our  global  infrastructure 
and  technical  support  services  to  IBM,  and  the  development  of  one  ERP  platform  to 
Accenture.This  wasn’t  just  about  cutting  costs;  it  was  about  finding  the  right  partners  with 
the  right  mix  of  technical  expertise  and  capabilities.  Engaging  IBM  and  Accenture  has 
freed  up  my  team  of  more  than  140  IT  professionals  to  design  and  deliver  solutions 
aimed  at  the  front  end  of  the  business. 

We  created  an  engagement  role  that  is  dedicated  exclusively  to  building  relationships  and 
working  day-to-day  within  the  business  to  truly  connect  with  our  brands  and  their  goals.  For 
each  of  Diageo’s  1 1  functional  business  areas,  there  are  one  or  two  engagement  liaisons 
who  identify  opportunities  where  technology  can  add  business  value. 

The  sheer  volume  of  projects  our  IT  organization  manages  spurred  creation  of  a  North 
America  IT  Project  Management  Office. When  I  came  onboard,  there  were  128  active  pro¬ 
jects  underway. We  had  to  prioritize  to  ensure  we  made  wise  technology  investments. 

We  have  34  active  projects  in  North  America,  all  reviewed  and  approved  by  a  cross-func¬ 
tional  executive  steering  committee.  Every  initiative  is  evaluated  based  on  its  business  value, 


including  revenue  enhancement,  cost  reduction  and  business-focus  alignment. This  helps 
us  ensure  the  IT  team  is  truly  focused  on  driving  growth  across  the  enterprise. 

Understanding  our  business 

People  are  our  greatest  asset,  which  is  why  we  heavily  emphasize  continuing  education, 
including  Project  Management  Institute  certification  and  participation  in  technology  and 
business  courses. 

Diageo’s  Biz  Eye  program  was  created  to  bring  IT  closer  to  the  business  through  market¬ 
ing  and  brand  presentations  and  product  demonstrations.  Our  IT  team  members  also 
spend  time  helping  administer  customer  surveys  and  assist  with  merchandising  to  expe¬ 
rience  firsthand,  for  example,  what  the  holiday  season  is  like  for  our  sales  teams. 

Networking  activities  that  connect  us  with  our  peers  can  yield  valuable  insights.  I  encour¬ 
age  my  team  to  get  involved  in  executive  leadership  programs  like  the  Society  for  Inform¬ 
ation  Management’s  (SIM)  Regional  Leadership  Forum.  1  am  active  in  SIM’s  Advanced 
Practice  Council  CIO  workgroup  and  serve  on  the  board  of  Green  Mountain  Coffee. 

Working  closely  with  the  business,  we  have  invested  in  technologies  that  are  helping  ex¬ 
pand  Diageo’s  brands, such  as  tools  that  help  our  sales  teams  and  distributors  make  more 
informed  decisions.  A  full  SAP  implementation,  now  complete  for  our  spirits,  Diageo  Chat¬ 
eau  &  Estates  Wines  and  Guinness  USA  businesses,  has  improved  our  ability  to  manage 
and  record  transactions.  ERP  tools  and  Web-based  technologies  also  are  enhancing  our 
supply  chain  by  streamlining  the  order  and  shipping  process  and  speeding  delivery  times. 

We  recently  launched  a  world-class  business  intelligence  platform,  Power  to  Market,  or 
MFbwer,  that  serves  as  a  unified  foundation  for  analyzing  financial  and  customer  data.  By 
providing  a  single  data  warehouse  repository  for  customer  and  sales  metrics,  the  system  in¬ 
creases  overall  productivity  Nearly  1,000  North  America  employees  have  access  to  MPower, 
with  the  ultimate  goal  of  offering  the  tool  to  our  strategic  distributors  starting  in  2006. 

Strategic  technology  investments  such  as  these  are  helping  Diageo  create  a  more  effi¬ 
cient  sales  and  distribution  process.  We  also  recently  established  a  Distributor  IT  Council 
of  CIOs  from  our  strategic  distributors  in  North  America. The  CIOs  meet  directly  with  our 
IT  leadership  teams  to  collaborate  on  defining  technology  strategies  and  addressing  the 
technological  challenges  that  face  our  collective  businesses. 

Our  IT  team  also  plays  an  important  role  in  advancing  Diageo’s  commitment  to  social 
responsibility  which  is  woven  into  everything  we  do.  Ail  Diageo  brand  Web  sites  comply 
with  country-  and  even  state-specific  advertising  and  marketing  regulations.  We  also  con¬ 
firm  that  site  visitors  are  over  the  legal  purchase  age  for  alcohol  beverages  in  the  state  or 
country  from  which  they  access  our  sites. 

In  an  increasingly  competitive  spirits  marketplace,  investment  in  technology  is  a  central 
part  of  our  global  strategy  We  now  have  the  infrastructure  and  tools  in  place  on  the  back 
end.  Our  ability  to  deliver  information  and  integrate  data  will  be  the  driving  force  behind 
our  future  growth. 

Carlini  is  CIO  of  Diageo  North  America.  She  can  be  reached  at  na.is.com 
munications@diageo.com.  ■” 


2002-2004 

Diageo's  IT  milestones  •  ERP  rollout  (Spirits  July  2003,  Diageo  Chateau  &  Estate  Wines  August  2004,  Diageo-Guinness  USA  October  2004). 


•  MPower  program  rollout  (Spirits  August  2003,  Diageo  Chateau  &  Estate  Wines  September  2004,  Diageo-Guinness  USA  November  2004). 


November  2001 

Barbara  Carlini  joins  Diageo 
North  America  as  CIO 


January  2002 

Creation  of  North  American 
Project  Management  Office. 


November  2003 

Signs  Accenture  and  IBM  outsourcing  deals; 
ongoing  standardization  of  infrastructure. 


July  2004-January  2005 

Diageo  IS  reorganization  to 
align  with  business.  , - 
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2003 

|  2004 

December  2001  -  January  2004  *  2005  and  beyond - * 

Seagram  acquisition  spurs  systems  and  January  2002-April  2003  Launches  people  development  and  Tap  data  warehouse  for  more  effective 

network  integration  and  data  migration.  Operating  system  and  desktop  standardization.  IS/business-alignment  programs.  advertising  and  promotion  analysis. 


www.nwfusion.com 


switch  allows  single  or.  mufti  pie: 

V-  ;  workstations  to  have  local  or  remote  access  to 
^•.•••■•Xfnulti'pjeicoropu^rsjocated  in  server  rooms  or 
on  the  .desktoP^SarcJless  of  their  platforms 
.  and  operating  systems.  KVM  switches  have 
traditionally 'pro vided  cost  savings  in  reducing 
energy  arid  equipment  costs  While  freeing  up 
valuable  real  estate. 

-■  -  ■  ■  '  ’  ; 

Recognized  as  the  pioneer  of  KVM  switch 
technology,  Rose  Electronics  offers  the 
industry’s  most  comprehensive  range  of 
server  management  products  such  as  KVM 
switches,  extenders  and  remote  access 
solutions.  Rose  Electronics  products  are 
known  for  their  quality,  scalability,  ease  of  use 
r-’-yt  and  innovative  technology. 

Rose  Electronics  is  privately  held  with  world- 
headquarters  in  Houston,  Texas  and  sells  its; 
products  worldwide  through  a  large  network  of 
Resellers  and  Distributors.  Rose  has 
operations  in  the  United  Kingdom,  Spain, 
Germany,  Benelux,. Singapore  and  Australia. 

.  ' 
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Rack¥lew: 


KVM  RACK  DRAWER  WITH  KVM  SWITCH  OPTION 


Rose  Electronics 
1 0707  Stancliff  Road 
Houston,  Texas  77099 

ROSE  US  +281  933  7673 

ROSE  EUROPE  +  44  <0>  1 264  850574 
ROSE  ASIA  +65  6324  2322 

ROSE  AUSTRALIA  +617  3388  1540 


SERVERS  WITHIN  YOUR  REACH 
FROM  ANYWHERE 


Local  or  Remote  Server  Management  Solutions 


.  .  . 
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UltraMatrix  Remote 

REMOTE  MULTIPLE  USER 
KVM  MATRIX  SWITCH 
ACCESS  OVER  IP  OR  LOCALLY 

•  Connects  1,000  computers  to  multiple  user  stations 
over  IP  or  locally 

•  High  quality  video  up  to  1280  x  1024 

•  Scaling,  scrolling,  and  auto-size  features 

•  Secure  encrypted  operation  with  login  and  computer 
access  control 

•  Advanced  visual  interface  (AVI) 

•  No  need  to  power  down  servers  to  install 

•  Free  lifetime  upgrade  of  firmware 

•  Available  in  several  models 

•  Easy  to  expand 

800  333  9343 

WWW.ROSE.COM 


UltraConsole 

PROFESSIONAL  SINGLE-USER 
KVM  SWITCH  SUPPORTS  UP 
TO  1000  COMPUTERS 

•  Connects  up  to  1000  computers  to  a  KVM  station 

•  Models  for  4,  8,16  computers 

•  Advanced  visual  interface  (AVI) 

•  Compatible  with  Windows,  Linux,  Solaris,  and  other  O/S 

•  Connects  to  PS/2,  Sun,  USB,  or  serial  devices 

•  Converts  RS232  serial  to  VGA  and  PS/2  keyboard 

•  Free  lifetime  upgrade  of  firmware 

•  Security  features  prevent  unauthorized  access 

•  Full  emulation  of  keyboard  and  mouse  functions  for  automatic, 
simultaneous  booting 

•  Easy  to  expand 

UiVROSE 

ELECTRONICS 


Terminal  server  vendors,  who  proclaim  that 
they  have  Secure  Out  Of  Band  products,  rely 
on  RADIUS,  TACACS+  and  other  in-band 
protocols  to  provide  security.  By  inference, 
they  imply  they  secure  out  of  band  access 
when,  in  fact,  they  otter  only  network  security, 
which  conflicts  with  out  of  band  access. 

A  true  Secure  Out  of  Band  Management 
solution  should  provide  strong  security  without 
reliance  upon  network-based  protocols. 
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CD!  offers: 

i  Hardware  encryption  over  dial-up 

and  network  connections 
f  PSA  certified  SecurlD  authentication 

without  a  network. 

i'  Patentee!  central  management  of  all 

remote  devices 


Full  NIST,  FIPS  140-2  certifications 
Remote  Power  control 


Homologous  world-wide  approved  •-r 
internal  modems 


Of  has  i mi  building  encryption  equipment  for  over  fifteen  years.  Our  customers  and  partners  include 
'idjor  financial  institutions,  government  agencies,  major  telcos,  utilities,  and  the  United  States  military. 


Communication  Devices  Inc. 
www.outofbandmanagement.com 


SENSAPHONE® 


IMS 


Sends 

SNMP 

Messages 


Monitors 

64 

IP  addresses 


Embedded 

Web 

Server 


Sends 

E-Mail 


Power 

Outage 

Alarming 


Internal 

UPS 
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Power 

Control 

Interface 


I  Internal  Voice, 
Ethernet  Modem 
Port  St  Pager  Port 


8  RJ-45  Sensor  Inputs 

(Temperature,  Humidity, 
Water,  Motion,  Power, 
Smoke/Fire) 


Microphone 

for  Sound 
Monitoring 


BE  NOTIFIED  BEFORE  CRITICAL  EVENTS  TURN  INTO  DISASTER! 


•  Eight  environment  inputs 

•  Power  sensing 

•  Monitors  64  IP  addresses 

•  Send  alerts  to  64  people 

•  8  methods  of  contact 

•  Calendar  scheduling 

•  Expands  to  256  sensors 

•  Remote  power  control 

•  Optional  camera 


The  Sensaphone  IMS-4000  Infrastructure 
Monitoring  System  monitors  critical  environ¬ 
mental  and  network  elements  in  your  server 
room,  data  center,  or  telecomm  installation  and 
reports  to  you  instantly  when  events  threaten 
your  infrastructure.  The  IMS-4000  keeps  watch 
so  you  don't  have  to.  See  these  features  and 
more  on  the  web  at  www.ims-4000.com 
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How  much  does  your  network  analyzer  see? 

Observer  is  the  only  fully  distributed  network  analyzer  built 
to  monitor  the  entire  network  (LAN,  802.1  la/b/g,  Gigabit, 
WAN).  Download  your  free  Observer  10  evaluation  today 
and  see  how  Observer  puts  you  in  the  driver's  seat  with  more 
real-time  statistics,  more  in-depth  analysis  and  more  network 
advantages  than  ever  before.  Choose  Observer. 

-CRPRC  i  tv  PLRnn  i  n&-  Determine  how  much  bandwidth 
your  router  will  need  based  on  historical  usage  patterns  with 
Network  Trending. 

-FORES 1 GHT-  Predict  how  network  changes  will  affect 
your  response  times  with  "What-lf 1  Modeling  Analysis. 

-no  5 1  GfiRL  -  Find  rogue  access  points,  monitor  access 
point  load  and  scan  wireless  channels  continuously  with  over 
50  WLAN  Expert  Conditions. 

US  &  Canada  toll  free  800.526.5958 
fax  952.932.9545 

UK  &  Europe  +44  (0)  1959  569880 

www.networkinstruments.com/analyze 


How  Do  You 
Securely  Reboot 

via  IP? 


Server  Technology 


Solutions  for  the  Data  Center  Equipment  Cabinet 


When  servers  and  network  devices 
in  the  data  center  lock-up,  network 
managers  need  fast,  secure  and 
reliable  tools  to  respond.  With 
Sentry™  Remote  Site  Managers, 
an  administrator  can  immediately 
reboot  a  remote  system  with  just 
a  few  mouse  clicks.  Sentry  also 
provides  accurate  input  current 
power  monitoring,  environmental 

■  .  y  ,,  V*  '  >./ 

monitoring  and  integrated  secure 
console  management  using  SSH. 


Sentry  Gives  You  Secure  Web/IP  Based  Remote  Site  Management 


"NEW!"  Secure  Shell  (SSHv2)  Encryption  « 
"I  EW!"  SSLv3  Secure  Web  Browser « 
"NEW!"  Active  Directory  with  LDAP  « 
SNMP  MIB  &  Traps  « 
Integrated  Secure  Modem  « 
True  RMS  Power  Monitoring  « 
Outlet  Receptacle  Grouping  for  Dual-Power  Servers  « 
Fail-Safe  Transfer  Switch  for  Single-Power  Supply  Servers  « 
Power-up  Sequencing  Prevents  Power  In-rush  Overload  « 
Temperature  &  Humidity  Environmental  Monitoring  « 
Zero  U  &  Rack-mount  Models  « 
1 1 0/208  VAC  Models  with  30-Amp  Power  Distribution  « 
NEBS  Approved  -48  VDC  Models  Available  « 


Server  Technology,  Inc. 

Server  Technology,  Inc.  toll  free  +1.800.835.1515 
1040  Sandhill  Drive  tel  +1.775.284.2000 

Reno,  NV  89521  fax  +1 .775.284.2065 

USA 

www.servertech.com 

sales@servertech.com 


©Server  Technology,  Inc.  Sentry  Is  a  trademark  ot  Server  Technology,  Inc. 


MERGING  MARKETS 
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www.nwfusion.com 


Control  Power  on  Any  AC 
Powered  Device ... 

Via  Web  Browser,  Telnet, 

Modem  or  Local  Terminal 

Servers,  routers,  and  other  electronic  equipment 
occasionally  “lock-up”,  often  requiring  a  service  call 
to  a  remote  site  just  to  flip  the  power  switch  to  perform 
a  simple  reboot.  With  WTI’s  Remote  Power  Switches, 
you  can  perform  reboot  and  On/Off  control  from 
anywhere! 


© 
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Web  Browser  Access  for  Easy  Setup  and 
Operation 

Encrypted  Password  Security 

Dual  15  Amp  Power  Circuits 
Total  30  Amps  Maximum  Load 

115  VAC  and  230  VAC  Models 
Sixteen  (16)  Individual  Outlets 
RS232  Modem  /  Console  Port 
Network  Security  Features 
Power-Up  Sequencing 

Also  Available  in  4,  8  &  16  Plug  Models  and 
Horizontal  1U  and  2U  Models 


Web  Browser  Interface 
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Want  an  On-Line  Demo? 

Just  call  or  email  and  you’ll  see  for  yourself  why  so  many 
network  professionals  choose  WTI. 

I'as,  We  are  Customer  Friendly! 

•/  Two  Year  Warranty 
/  We  Stock  for  Same  Day  Shipment 
v/  30  Day  No-Fee  Return  Policy 

Start-up  Cables  and  Rack  Kits  Included 
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NBB-1600 

www.wti.com 


western  telematic  incorporated 

5  Sterling  •  Irvine  •  California  •  92618-2517  •  (800)854-7226 


yeuowwcker 

802.11  bg  W-LAN  ANALYZER 

>►  2.4  GHz  SPECTRUM  ANALYZER 
>  Dual-band  802.11b  &  g  demodulators 
>-  Direction  Finding  of  Rogue  AP’s 


Security  •  Installers  •  WISPs  •  Hotspots 


sasm&uRA. 


Vellouj  Jacket™ 
Hive  Software 

Site  Initiator/Supervisor/ 
Investigator  indoor/outdoor 
mapping  W-LAN  coverage 
solution. 


Berkeley  Varitronics  Systems  Metuchen,  NJ  08840 
(732)  548-3737  WWW.bVSySteiTlS.C0 111 


DILUTE  YOUR  DEBT! 

Dilute  your  debt  with  Resource  Lynx,  the  top  lending  institution  in 
North  America  with  the  perfect  resources  to  help  you  be  financially  free. 
Resource  Lynx  guarantees  service  perfection  in  all  financial  needs! 

•  Debt  Consolidation  •  Refinancing 

•  All  Mortgages  •  Business 

•  Personal  help  and  much  more 

It  only  takes  one  phone  call,  48  hours  and  professional  help  to 
conquer  and  defeat  your  creditors.  At  Resource  Lynx  we  have  all  the 
answers  to  your  problems  so  call  now  888-524-1185  to  refine  your  credit! 

LIBERATE  YOURSELF 


Phone  #  1-888-524-1185  Fax#  1-888-524-1185 


Systems/Features/Memory 

CISCO 


CBlC's/Cables/Parts 

Also  Available:  Extreme,  Adtran 

In  Stock  •  Fast  Delivery  •  No  Expedite  Charges 

COMSTAR,  INC 

The  #1  Network  Remarketer 

952*835*5502 

Fax  952*835*1927  www.comstarinc.com 
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Communicating  through  technology 


If  it’s  on  the  K  WORLDWIDE  PROVIDER 


network,'  *■  •  ’* 
vfe’ye  got  it! 

i  1 

•  NetWork  Hardware 

•  Cables 


OF  NETWORK 
HARDWARE 
SINCE  1981! 


THE  NETWORK  SPECIALISTS 

WRC4NET 


•  Memory 


'J 


•  Accessories 

sales@wrca.net  •  (800)699-9722x102 


Reading  someone 
else's  issue  of 

NetworkWorld? 

Subscribe  today  and  receive  your  own 
1-year  subscription  for  FREE  - 

a  $129.00  value! 


Go  to  http://subscribenw.com/mynw  for  your  free  subscription. 


Information 

Overload? 


Take  a  break  at 
itcareers.com 
and  take  the 
hassle  out  of 
job  searching! 


www.itcareers.com 


Programmer/Systems  Analyst. 
Participate  in  solution  delivery; 
developing  prototypes,  writing 
analysis  and  design  documents, 
ensuring  operational  control  of 
systems,  installing  software, 
writing  and  testing  code,  and 
debugging  software  programs. 
Must  have  Bachelor's  in  Com¬ 
puter  Science  or  related,  1  yr 
exp  plus  knowledge  of  Oracle 
Developer  2000  (Forms,  Re¬ 
ports,  Graph  &  Menu),  PL/SQL, 
SQL*  Plus,  SQL*  Loader,  Pro*C, 
and  Discoverer  2000.  Send 
resume  to  Fastek  International, 
Attn:  David  Kemper,  1425  60th 
St.  NE,  Cedar  Rapids,  IA  52402. 


enterprise  integration 


network  vulnerabilities 


corporate  data  security 
government  compliance 
mobile  &  wireless  security 
business  management  needs 


The  right  IT  professional 
can  jump  the  hurdles  of 
today  s  IT  challenges. 

Call: 


(800)  762-2977 


it  careers 


Project  Director  in  Mesa,  A Z  to 
direct  &  id.  manageable  onsite/ 
offshore  elearning  &  applica¬ 
tions  development  projects. 
Must  have  MS  deg.,  or  foreign 
equiv.,  in  Eng.,  Comp.  Sc.  or  rel. 
field  &  3  yrs.  proj.  eng.  exper., 
incl.  proj.  design,  implementa¬ 
tion,  planning,  reqts.  analysis  & 
execution,  2  yrs.  exper.  in  soft¬ 
ware  proj.  eng.  for  comp,  or  web 
-based  training  &  proj.  mgmt. 
exper.  Bach,  deg.,  or  foreign 
equiv.,  in  Eng.,  Comp.  Sc.  or  rel. 
field  &  5  yrs.  progressive  proj. 
eng.  exper.,  incl.  proj.  design, 
implementation,  planning,  reqts. 
analysis  &  execution,  plus  2  yrs. 
exper.  software  proj.  eng.  for 
comp,  or  web-based  training  &  1 
yr.  proj.  mgmt.  exper.  can  subst. 
for  MS  deg.  &  required  exper. 
Send  resume  to  Hilary  Gosselin, 
FIR  Manager,  Lionbridge  Tech¬ 
nologies,  Inc.,  492  Old  Connec¬ 
ticut  Path,  Framingham,  MA 
01701. 


Sr.  Applications  Engineer 
wanted  by  Software 
Development  firm.  Req¬ 
uires  BS  in  Comp.  Sci.  plus 
5  years  exp.  in  Oraclelli 
and  J2EE.  Send  resume  to 
Globevale,  Inc.  430 
Franklin  Village  Dr.,  Suite 
109,  Franklin,  MA  02038 


IT  professionals  (programmers 
analysts,  DBA,  system  administra¬ 
tor,  software  engineers)  wanted  by 
Advanced  Technology  Group  to 
design  applications  using  Java, 
Oracle,  SQL,  HTML,  WebLogic, 
JSP,  VB,  EJB.  Min.  requirement  is 
BS/MS  with  exp.  Please  send 
resume  to  info@atgusainc.com. 
EOE 

Exlmware,  a  service  Co.  for  global 
agriculture  trade  markets,  is  look¬ 
ing  for  Business/Sys.  Analysts, 
DBA&  SA/V  Eng.  Min.  BS  with  exp. 
required.  Key  skills:  s/w  design, 
dev.  and  testing,  project  mgt.,  OO 
programming.,  Java,  and  Xml. 
Send  resumes  to: 

careers@eximware.com.  EOE. 
No  calls. 


Infogen  is  seeking  IT  profession¬ 
als  to  design  applications  for 
clients  using  Oracle9i,  Weblogic  / 
WebSphere,  C++,  Visual  C++, 
VB,  COM,  STL,  MTS,  MSMQ, 
ASP,  Java,  HTML,  XML.  MTS, 
MSMQ,  ADO.  UML.  Min  BS,  trav¬ 
el  is  required.  Send  resume  to 
infojobs@infogeninc.com.  EOE. 

Software  engineers/system  ana¬ 
lyst/DBA  wanted  by  Wiztech,  a 
small  but  well-established  IT  con¬ 
sulting  company.  Applicants  must 
have  BS/MS  degree  with  solid 
experience  in  the  IT  field. 
Competitive  wage,  standard  ben¬ 
efits  &  stable  projects.  Please 
contact  hr@iwiztech.com.  EOE. 
No  calls. 


Software  Analyst.  Under  senior 
supervision,  analyze,  design, 
implement  and  maintain  soft¬ 
ware  for  some  of  the  leading 
banks  in  the  mortgage  industry. 
Develop  new  software  not  cur¬ 
rently  existing  in  the  industry. 
Design  software  using  modern 
software  design  tools  in  operat¬ 
ing  system  platforms.  Deploy 
applications  on  application  ser¬ 
vers.  Design  and  model  data¬ 
bases  on  database  servers. 
Must  have  Bachelor's  in  Comp 
Sci,  Engg  or  related,  and  must 
have  knowledge  of  Rational 
Suite,  Microsoft  Vision,  Linux, 
Solaris,  Oracle  7/8i,  MySQL, 
and  SQL  Server.  Send  resume 
to  Mark  Loomis,  Praxis 
Technology  Group,  LLC,  1500 
NW  118th  St.,  Des  Moines,  IA 
50326. 


SYSTEMS  ENGINEER 
TEAM  LEAD 

Manage  system  engineers  and 
computer  application  developers 
and  other  personnel  to  coordi¬ 
nate  the  design,  development, 
implementation  and  testing,  of 
high  volume  transactional  tele¬ 
phonic  and  web  based  business 
applications  and  database  sys¬ 
tems  for  the  commercial  and 
government  sectors  containing 
highly  confidential  personal 
information,  government  verifi¬ 
able  audit  controls  and  interac¬ 
tive  voice  response.  Manage 
professional  staff  to  resolve 
problems,  design  and  document 
useability  testing  and  ensure 
system  functionality  and  perfor¬ 
mance.  Requires  Bachelors  or 
equivalent  level  degree  in  Com¬ 
puter  Science,  MIS,  Statistics, 
Engineering  or  closely  related 
field  and  four  years  experience 
in  the  leadership/management 
of  computer  applications  devel¬ 
opment  projects.  Qualified  appli¬ 
cants  must  presently  be  eligible 
for  permanent  employment  in 
the  United  States.  (8:00  a.m.  to 
5:00  p.m.);  40  hours  per  week, 
overtime  as  needed  without  ad¬ 
ditional  compensation.  Position 
is  with  TALX  Corporation  in  St. 
Louis,  Missouri.  Send  resumes 
to:  Ms.  Ellen  Stanko,  Director  of 
Human  Resources,  TALX 
Corporation,  1850  Borman 
Court,  St.  Louis,  Missouri  63146. 
EOE. 


Seeking  qualified  applicants  for 
the  following  positions  in  Collier¬ 
ville,  TN:  Senior  Programmer 
Analyst.  Formulate/define  func¬ 
tional  requirements  and  docu¬ 
mentation  based  on  accepted 
user  criteria.  Requirements: 
Bachelor's  degree  or  equivalent* 
in  computer  science,  MIS,  engi¬ 
neering  or  related  field  plus  5 
years  of  experience  in  sys¬ 
tems/applications  development. 
Experience  with  designing/cod¬ 
ing  GIS  applications  using  Map- 
Quest  Geolocate  and/or  ESRI 
server  GIS  products  also  re¬ 
quired.  'Master's  degree  in  ap¬ 
propriate  field  will  offset  2  years 
of  general  experience.  Submit 
resumes  to  Tim  Ames,  FedEx 
Corporate  Services,  80  FedEx 
Parkway.  2nd  Floor  Horizontal, 
Collierville,  TN  38017.  EOE 
M/F/D/V. 


Systems  Analyst  needed  for 
Software  Development,  Serv¬ 
ices  &  BPO  firm  located  in 
Burlington,  VT.  Job  duties 
include:  Analyze,  design,  devel¬ 
op,  test,  and  implement  web- 
based  applications  that  link  to 
databases  for  business  clients 
located  throughout  the  U.S. 
Extensively  work  with  data  ware¬ 
housing  applications.  Engage  in 
performance  tuning  and  opti¬ 
mization  of  databases.  Use 
Oracle,  MicroStrategy,  Business 
Objects.  Teradata,  and  COG- 
NOS.  Applicant  must  have  B.S. 
degree  in  Computer  Science, 
Business,  Math  or  Engineering. 
Applicant  must  also  have  2  yrs. 
exp.  in  the  job  duties  described 
above  or  in  any  computer  relat¬ 
ed  occupation  which  must 
include  skills  listed  above. 
40hrs/wk,  8am-5pm,  M-F, 
$65,000/yr.  Send  resumes  to: 
Job  No.  29899,  P.O.  Box  488, 
Montpelier,  VT  05601-0488. 


Lead  Software  Security  Test 
Engineer  needed  to  analyze 
software  at  the  binary  level  to 
include  x86  assembly,  computer 
architecture,  reverse  engineer¬ 
ing,  disassembly  and  decompi¬ 
lation,  manage  a  team  of  highly 
skilled  software  security  test 
engineers  and  interact  with  cus¬ 
tomers,  as  well  as  converse  with 
engineers  at  the  lowest  level  of 
technical  detail.  Candidates 
must  have  a  master's  degree  in 
Software  Engineering  or 
Computer  Science  and  1  year 
experience.  Send  resumes  to 
Security  Innovation,  Inc.  4450 
West  Eau  Gallie  Blvd.  Suite  240, 
Melbourne,  FL  32934.  Attn: 
Human  Resources. 


Software  Engineers  (hvng  Masts 
Deg  w/2yr  exp  or  Bach  Deg  w/5 
yrs  exp),  &  Progmr  Analysts 
w/exp.  for  IT  Co.,  Exp.  must  incl 
comb's  of  Java,  Custom  Portal 
implementation  using  Java/ 
J2EE  Technologies,  Business 
process  re-engineering,  ATG 
architect/manager  for  custom 
J2EE  based  personalization 
websites/portals.  EJB,  Servlets. 
JSP,  C++,  C,  Net,  C#,  COM, 
DCOM,  MQSeries,  MQSI,  Web 
methods,  TIBCO,  Seebeyond, 
EDI,  Gentran,  Harbinger,  TLE, 
Oracle  Clinical,  SAS  Program¬ 
ming,  QA  Validation,  QATesting, 
Win  runner,  Loadrunner,  Cardiff. 
Smalltalk,  Reporting  services, 
.Net,  ASP.NET,  VB.NET,  C#, 
ADO.NET,  Web  Services,  Rem- 
oting,  Datawarehousing,  Busin¬ 
ess  Objects,  Informatica,  Data- 
stage,  Microstrategy,  Actuate, 
Siebei,  Informix,  Sybase.  Orac¬ 
le,  SQLServer,  DB2,  MS-Ac- 
cess,  Unix,  Windows  2000/XP/ 
2003,  Netscape  Application  Ser¬ 
ver,  SAP  Basis  for  SAP  R/3  & 
MySAP  Components,  BEA  Web 
Logic;  Cognos  ReportNet  on 
IBM  Websphere  .We  are  also 
looking  for  Networking  Consult¬ 
ants  with  exp  in  global  office 
connectivity, branch  connectivity 
using  BGP  routing  protocol,  de¬ 
sign,  develop,  test  &  implement 
network  solutions.  Must  have  re¬ 
levant  exp.  Reply  w/  2  copies 
of  ref:  HRD  Hallmark  Global 
Technologies  Inc,  991  Forest 
Ave.,  Suite  #4,  Portland,  ME  - 
04103. 

Email:  resumes@hgtechinc.net. 


Programmer/Analyst  (multiple 
postions)  needed  for  Software 
Development,  Services  &  BPO 
firm  located  in  Burlington,  VT. 
Job  duties  include:  Analyze, 
design,  develop  and  implement 
client  server,  web-based,  and 
ERP  computer  applications  for 
clients  located  throughout  the 
U.S.  Use  PL/SQL,  XML,  and  Or¬ 
acle  in  Windows  and  Unix  envi¬ 
ronment.  Use  J2EE  technolo¬ 
gies.  Use  Informatica  and  Cog¬ 
nos  for  data  warehousing.  Appli¬ 
cant  must  have  B.S.  degree  in 
Computer  Science,  Business, 
Math  or  Engineering.  Applicant 
must  also  have  1  yr.  exp.  in  the 
job  duties  described  above  or  in 
any  computer  related  occupa¬ 
tion  which  must  include  skills 
listed  above.  40hrs/wk,  8:00am- 
5:00pm,  Mon-Fri,  $60,000/yr. 
Send  resumes  to:  Job  No. 
29862,  P.O.  Box  488,  Montpel¬ 
ier,  VT  05601-0488. 


Solutions  Developer,  Order 
Mgmt  Systems  (OMS)-Jersey 
City,  NJ:  sought  by  Global 
Logistics  &  Transp.  Co.  to 
anlyze,  dsgn,  dvlp  &  implemt 
standard  operating  procs  for 
OMS,  compatible  with  IT  appli¬ 
cations.  Configure,  test  &  t/shoot 
proprietary  systems.  Spvse  2. 
Must  have  Master's  Deg  in  Int'l 
Bus  or  IT  or  related  Comp,  field 
&  2  yrs  exp  in  job  offd  or  2  yrs 
rel.  exp  in  mgmt  or  spzl'd  pos.  in 
Order  Mgmt  Sys  or  Global  Qlty 
Mgmt  Sys.  Must  be  cert'd  in 
Procurement  &  Logistics  Mgmt 
&  must  have  ability  to  work 
w/major  global  clients  to  create 
logistical  solutions  in  CIEL. 
Send  resumes  to:  H. Shapiro, 
Exec  Admin.,  Kuehne  &  Nagel. 
Inc.,  10  Exchange  PI.,  19FI, 
Jersey  City,  NJ  07302. 


IT  CAREER  OPPORTUNITIES 

DELAWARE  -  Network  Engin¬ 
eering  Services  Analyst.  Deliver 
telecommunications  sen/ices  re¬ 
lated  to  internet/firewall  and  per¬ 
imeter  security  for  South  Amer¬ 
ican  clients.  Position  requires  a 
BS  and  relevant  experience;  a 
combination  of  experience  and 
college  level  education  may  be 
accepted.  The  flexibility  to  travel 
and  be  on  call  may  be  neces¬ 
sary.  Must  be  fluent  in  Spanish 
and/or  Portuguese.  Proof  of 
legal  authorization  to  work  in  the 
U.S.  is  required.  Please  forward 
your  resume  to  Computer  Sci¬ 
ences  Corp.,  Attn:  J.  Le,  2100  E. 
Grand  Ave.,  Mail  Code  A209,  El 
Segundo,  CA  90245. 


Medical  Information  Tech  Analy¬ 
sts  needed  in  Tampa,  FL.  Req. 
Bachelor's  degree  or  equiv.  (as 
determined  by  properly  evaluat¬ 
ed  credentials)  in  Biology, 
Pharm.  or  related  &  5  yrs.  exp  in 
job  offered  or  in  related  occupa¬ 
tion  as  a  Computer  Professio¬ 
nal.  Rel.  exp.  must  include  3  yrs. 
working  in  the  Pharmaceutical 
Industry  with  Medical  Informa¬ 
tion  Systems  analysis  &  design 
of  business  requirements.  Dut¬ 
ies:  Design,  develop,  analyze  & 
document  business  processes 
in  a  pharmaceutical  environ¬ 
ment;  document  pharmaceutical 
process  &  translate  into  end  us¬ 
er  system  for  coding;  design  bu¬ 
siness  requirements  &  medical 
information  systems;  work  clos¬ 
ely  with  other  pharmaceutical 
process  teams  to  facilitate  pro¬ 
ject  progress  &  to  ensure  an  in¬ 
tegrated  system  solution;  test 
pharmaceutical  information  sys¬ 
tem  for  compliance  with  medic¬ 
al/pharmaceutical  client  needs; 
maintain  current  insight  to  SAP 
policies,  technology,  products  & 
medical/pharmaceutical  industry 
issues,  enabling  knowledge  tra¬ 
nsfer  to  clients;  complete  inter¬ 
nal  projects  &  reports;  perform 
IT  support,  programming  &  web¬ 
site  development;  travel  to  inter¬ 
act  with  clients  at  various  loca¬ 
tions  for  different  short  and  long 
term  projects;  work  with  SAP. 
sev.  pos.  avail.  40  hrs.  perwk.,  8 
AM  -  5  PM;  $76,000/yr.  Send 
resume  to:  Workforce  Program 
Support,  P.O.  Box  10869,  Talla¬ 
hassee,  FL  32302-0869,  Ref. 
Job  Order  #FL-2582478. 


BCCUSA  Inc  -  South  Portland, 
ME  needs  experienced  System 
Administrators  having  a  Bachel¬ 
ors  Degree  with  minimum  two 
years  of  experience  in  Installa¬ 
tion  and  maintenance  of  Red- 
Hat  Enterprise  Linux  AS3,  Win¬ 
dows  2000/2003  servers  in  high 
availability  DEV/QA/Production 
environment,  Patch  manage¬ 
ment  using  Shavlik  HFNetChk- 
Pro  and  System  monitoring  us¬ 
ing  DeepMetrix  IPMonitor.  Ex¬ 
perience  in  IIS/Apache  Web  ser¬ 
vers,  J2EE  application  servers 
like  JRun/Orion/JBoss  and  soft¬ 
ware  build/deployment  tool  ANT 
is  desired.  Competitive  salary 
and  benefits.  M-F,  40  hours/ 
week.  Please  mail  your  resume 
to  BCCUSA  Inc.,  HR  Dept, 
650Main  Street  Ste  201,  South 
Portland,  ME-04106. 


Seeking  qualified  applicants  for 
the  following  positions  in  Mem¬ 
phis,  TN:  Senior  Programmer 
Analyst.  Formulate/define  func¬ 
tional  requirements  and  docu¬ 
mentation  based  on  accepted 
user  criteria.  Requirements:  Ba¬ 
chelor's  degree*  or  equivalent  in 
computer  science,  MIS,  engi¬ 
neering  or  related  field  plus  5 
years  of  experience  in  sys¬ 
tems/applications  development 
Experience  with  J2EE.  Oracle 
databases  and  airline  schedul¬ 
ing  systems  also  required 
'Master's  degree  in  appropriate 
field  will  offset  2  years  of  gener¬ 
al  experience.  Submit  resumes 
to  Matt  Coplas,  FedEx  Corpor¬ 
ate  Services,  2955  Republican 
Drive,  2nd  Floor.  Memphis,  TN 
38118.  EOE  M/F/D/V. 


BCCUSA  Inc-South  Portland. 
ME  needs  experienced  Prog¬ 
rammer  Analysts  having  a 
Bachelors  Degree  with  minimum 
two  years  of  experience  in 
Documentum  4i/5i,  DFC  4. 0/5.0, 
GxPharma  4.3,  WDK4.0/5.0, 
WCM,  eContent  Server  4i/5i, 
Java  ,  JSP,  JRun,  JDBC, 
Servlets,  XML.  RMI,  JMS.  EJB. 
ASP,  JavaScript,  VBScript, 
WebLogic  and  Oracle.  Comp¬ 
etitive  salary  and  benefits.M-F, 
40  hours/week.  Please  mail  your 
resume  to  BCCUSA  Inc.,  HR 
Dept,  650Main  Street  Ste  201, 
South  Portland,  ME-04106. 
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Omnisoft,  Inc. 

Software  Engineers:  Research, 
design,  develop,  test,  &  recom¬ 
mend  software  requirements  for 
E-commerce  database  applica¬ 
tions,  Use  Oracle,  Java,  Perl, 
XML.  Solaris,  Web  logic,  C++  & 
current  Web  Technologies  in 
Windows,  Unix,  and  Linux  envi¬ 
ronments.  Need  Bachelor's  in 
Comp.  Science  or  related  and  2 
yrs  of  exp. 

Programmer  Analysts:  Design  & 
develop  Enterprise  Resource 
Planning,  Customer  Relation¬ 
ship  Management,  ASP,  Data- 
warehouse  applications.  Use 
current  web  technologies,  web 
services,  Stored  procedures  and 
SQL.  Work  in  Unix  Environment 
and  Unix  Schell  Scripting.  Need 
2  yrs  of  exp. 

Send  resume  to:  HR  Manager, 
Omnisoft,  Inc.,  2215  W.  Russell 
Ave.  Sioux  Falls,  SD  57104  or 
via  e-mail  at:  hr@omnisoftinc.net 


Project  Director  in  Mesa,  AZ  to 
direct  &  id.  manageable  onsite/ 
offshore  elearning  &  applica¬ 
tions  development  projects. 
Must  have  MS  deg.,  or  foreign 
equiv.,  in  Eng.,  Comp.  Sc.  or  rel. 
field  &  3  yrs.  proj.  eng.  exper., 
incl.  proj.  design,  implementa¬ 
tion,  planning,  reqts.  analysis  & 
execution,  2  yrs.  exper.  in  soft¬ 
ware  proj.  eng.  for  comp,  or  web 
-based  training  &  proj.  mgmt. 
exper.  Bach,  deg.,  or  foreign 
equiv.,  in  Eng.,  Comp.  Sc.  or  rel. 
field  &  5  yrs.  progressive  proj. 
eng.  exper.,  incl.  proj.  design, 
implementation,  planning,  reqts. 
analysis  &  execution,  plus  2  yrs. 
exper.  software  proj.  eng.  for 
comp,  or  web-based  training  &  1 
yr.  proj.  mgmt.  exper.  can  subst. 
for  MS  deg.  &  required  exper. 
Send  resume  to  Hilary  Gosselin, 
HR  Manager,  Lionbridge  Tech¬ 
nologies,  Inc.,  492  Old  Connec¬ 
ticut  Path,  Framingham,  MA 
01701. 


Maintain  Dental  mgmt.  prac¬ 
tice  s/w  to  encompass 
appointment,  billing,  accoun¬ 
ting  &  record  keeping. 
Maintain  Web  &  d/base 
appl./sys.  by  using  XML, 
ASP.NET,  VB.NET,  Visual 
Studio,  Crystal  Reports  & 
IIS.  Req:  Bachelor  in  Elec¬ 
trical  Eng.,  or  Comp.  Sci. 
40hrs/wk.  Job/Interview  Site: 
Anaheim,  CA.  Send  resume 
to  Dr.  Tarlochan  Singh  DDS, 
APC  @  PO.  Box  18914, 
Anaheim,  CA  92817. 


ObjectWin  seeks  System  Analyst, 
DBA  or  other  IT  professionals. 
Applicants  must  have  BS/MS  or 
equivalent.  Skills  in  ASP.Net,  B2B, 
VB,  Java,  HTML,  VB.Net,  XSL, 
CSS,  MS  CMS,  SSL  &  MS  pre¬ 
ferred.  Good  wage.  Travel 
required  for  some  jobs.  Apply  at 
skarande@objectwin.com.  EOE. 
No  calls. 

Synova  has  multiple  openings  for 
Project/Software  Engineers, 
System  Analysts,  DBA.  Our  clients 
include  Fortune  500.  Candidates 
must  have  MS  or  BS  with  experi¬ 
ence.  We  offer  attractive  wage 
with  full  benefits.  Travel  maybe 
required.  Email  resume  to 
ads@synovainc.com.  EOE.  No 
calls. 


Software  Design  and  Deve¬ 
lopment  Administrator  for 
Medical  Day  Spa  to  analyze, 
design  and  implement  solutions 
for  Internet  related  activities, 
such  as  web  design  and  devel¬ 
opment,  e-commerce,  software 
application  design,  etc.  using 
MS  dot.Net  technologies  (spe- 
jciaily  WinForms,  ASP.NET. 
jADO.NET  and  MS  SQL). 
(Supervise  and  coordinate  work- 
j ere  remotely.  BA  in  Bus,  Adm  in 
|  MIS  +2  yrs  exp  in  job  offered 
!  working  experience  in  Object 
'Greeted  programming  req. 
(Forward  resumes  to:  Jayne 
jEshelman,  Cara  Mia  Care 
i  Center  19541  E.  Parker  Sq.  Dr., 
{ Parker,  CO  80134 


Programmer/Analyst  needed  for 
Software  Development,  Services 
&  BPO  firm  located  in  Burlington, 
VT.  Job  duties  include:  Analyze, 
design,  develop,  code,  test,  and 
implement  computer  applica¬ 
tions/systems  for  clients  located 
throughout  the  U.S.  Use  Visual 
Basic,  Oracle,  Clarify,  TIBCO, 
PL/SQL,  and  SQL  Server. 
Applicant  must  have  B.S.  degree 
in  Computer  Science,  Business, 
Math  or  Engineering.  Applicant 
must  also  have  2  yrs.  exp.  in  the 
job  duties  described  above  or  in 
any  computer  related  occupation 
which  must  include  skills  listed 
above.  40hrs/wk,  8am-5pm,  M-F, 
$65,000/yr.  Send  resumes  to: 
Job  No.  29933,  P.O.  Box  488, 
Montpelier,  VT  05601-0488. 


Sr  Software  Developers/ 
Engineers  with  BS  in  CS,  IS, 
Math  or  Engg  and  3  yrs  progres¬ 
sive  development  exp  in  current 
MS  operating  system  environ¬ 
ments  using  Windows.  One 
position  requires  1  year  web- 
based  exp  with  .Net,  C#,  Java 
XML,  SQL,  VB  and  Windows 
95/98/NT  2000.  One  position 
requires  1  year  exp  with  Java, 
J2EE,  Corba,  and  SQL. 
Resumes  only  to  B.  Ashmore, 
Advanced  Solutions,  Inc.,  1510 
Klondike  Road,  Suite  400, 
Conyers,  GA  30094 


Programmer  Analyst 

Plan,  develop,  test,  document 
computer  programs;  consult  with 
user  to  identify  operating  proce¬ 
dures  for  workflow,  financial  & 
medical  applications;  determine 
feasibility,  cost/time  required; 
convert  project  specs,  prepare 
flow  charts  using  Visio,  Rational 
Rose;  enter  program  codes/ 
commands;  detect  syntax/logic 
errors  written  in  Delphi,  Java  & 
RDBMS  (MS  Access,  SQL  Ser¬ 
ver  2000);  use  Visual  Source- 
safe,  CVS.  Req.  BS  Comp.  Sci., 
Applied  Math,  related  or  equiv.  & 
2  yrs.  exp.  Resume  to  HR,  SDA 
Software  11301  Coolwood  Rd. 
Louisville,  KY  40223. 


IT  specialists  wanted  by  Deligent 
LLC  to  develop  applications  using 
Oracle,  SQL,  VB,  Java,  C/C++, 
SAP,  AS/400,  Developer  2000, 
Windows  NT,  etc.  Minimum  is 
BS/MS  with  IT  experience.  Travel 
maybe  required.  Competitive 
wage  with  benefits.  Apply  at 
jobs@deligent.net.  EOE. 

Immediate  openings  for  both  entry 
&  experienced  Systems  Analysts, 
Software  Engineers,  DBA  &  IT 
Consultants.  Job  duties  &  tools 
vary  depending  on  position. 
BS/MS,  0-3  yrs  exp  reqd,  accept 
foreign  edu.  equiv.  Travel  maybe 
required.  Send  resume  &  salary 
requirements  to:  Saras  America, 
Inc.  hr@SarasAmerica.com.  EOE 


S/W  Engineers  -  Dvlp  &  support 
S/W  to  process  &  analyze  mag- 
netocardiographic  (MCG)  sig¬ 
nals:  digital  signal  processing, 
ODBC  prgmg.  data  acquisition, 
communication  w /  SQUID  elec¬ 
tronics,  real  time  data  display, 
GUI  &  debugging.  Use  Visual 
C++,  SQL,  multithreading 
prgmg.  Visual  Studio  C++, 
RDBMS,  MFC,  DAQ,  Win  SDK. 
Comp  Sci/Engg  &  exp  req’d. 
Send  resume  to  CardioMag 
Imaging,  Inc.,  4th  FI,  450  Duane 
Ave,  Schenectady,  NY  12304. 
EOE 


Radio  Frequency  Engineers 
needed.  MS  or  equiv.  and  rel. 
work  exp.  Duties  include: 
Analyze,  design,  implement, 
optimize,  &  enhance  wireless 
telecomm,  networks.  Link  bud¬ 
gets  analysis  &  system  dimen¬ 
sioning  for  coverage  &  capacity. 
Oversee  &  guide  the  work  of 
Assoc.  &  Design  Enggs. 
Position  may  require  travel.  3 
yrs  of  Radio  Frequency  exp  with 
at  least  2  yrs  Nortel  equip,  exp. 
Send  res.,  ref.,  &  sal.  req.  to  IT 
Wizards  Inc.,  181  State  St., 
Augusta,  ME,  USA  04330. 


SYSTEMS  SOFTWARE  ENGI¬ 
NEER  to  provide  on-site  consul¬ 
tancy  to  analyze,  design,  devel¬ 
op  and  implement  systems  soft¬ 
ware  in  web  architecture  using 
Java,  JSP,  WebLogic,  Oracle, 
DB2  and  WebSphere  for  J2EE 
applications  in  objected  oriented 
and  Windows  environment. 
Require  Master  in  Computer 
Science/Applications  and  three 
years  experience  in  the  job 
offered  or  any  experience  pro¬ 
viding  skills  in  the  described  job 
duties.  40%  travel  to  client  sites 
within  the  U.S.  required. 
Competitive  salary  and  benefits, 
40-hr  week,  M-F.  Mail  resume 
to:  Human  Resource  Manager, 
4C  Solutions,  Inc.,  1201  7th 
Street,  East  Moline,  IL  61244. 


Computer  Professionals  (Multiple 
Openings)  Must  have  bachelors  or 
equivalent  degree  and/or  experi¬ 
ence  in  computer  science,  engi¬ 
neering  or  related  field  and  experi¬ 
ence  in  some  of  the  following  skills: 
C/C++,  Java,  J2EE,  WSAD,  WBI 
(Crossworlds),  VB,  Oracle,  SQL 
Server,  Sybase,  PeopleSoft,  Siebel, 
SAP,  EDI,  EAI,  Oracle  Financials, 
Main  Frame  environment,  Cobol, 
DB2,  Facets,  AS/400  on  Windows 
and  /or  Unix  Platforms.  Must  be 
able  to  travel  or  relocate  nation¬ 
wide.  Attractive  compensation 
package.  Please  Email  to: 
resumes@esharpedge.com  OR 
mail  to:  HR  Department, 

Sharpedge  Solutions  Inc,  2200  S 
Main  Street,  Ste  #  205,  Lombard,  IL 
60148 


Software  Engineer  to  analyze, 
design,  develop  and  test  client 
server  enterprise  applications 
using  J2EE,  Java,  C++, 
Servlets,  JSP,  XML.  HTML, 
CORBA,  Oracle,  Websphere  on 
Windows  and  UNIX  operating 
systems;  generate  code  from 
client  requirements  using  Visio 
2000  and  UML;  evaluate  and 
enhance  performance  of  enter¬ 
prise  application  using  JProbe 
Suite  and  automate  testing 
process  using  WinRunner. 
Require  BS  or  foreign  equivalent 
in  CS/Computer  Engg  with  3  yrs 
of  exp  in  IT.  Competitive  salary, 
F/T.  Resumes  to  CyberObject, 
3050  Business  Park  Drive,  Suite 
A-1,  Norcross,  GA30071 


C  &  G  Pharmacy  LLC  (Houston, 
TX)  is  seeking  a  Computer  Sup¬ 
port  Specialist  using  Radio  Fre¬ 
quency  Sensing  and  Ultrasonic 
Detecting  Technologies.  6  mon. 
exp.  Mail  resume  to  11618 
Aldine  Westfield,  Houston,  TX 
77093  or  281-442-1432(F).  Attn: 
Sunny  Chin. 

Seismic  Micro-Technology,  Inc. 
seeks  a  Geosciences  Software 
Quality  Assurance  Tester  to  ana¬ 
lyze  and  test  seismic  software. 
M.S.  1  yrs.  exp.  in  using  geosci¬ 
ences  software.  Send  resume  to 
8584  Katy  Fwy,  #400,  Houston, 
TX  77024  Attn:  Manager  of  HR 
or  713-464-6440(F). 
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Amkor  Technology  is  currently 
looking  for  a  Senior  Analyst  for 
our  Chandler.  A Z  office.  The  pri¬ 
mary  function  of  this  position  is 
to  perform  project  management 
and  web  architecture  design  uti¬ 
lizing  tools  such  as  Java,  JSP, 
ASP.  Websphere,  HTML,  Java¬ 
Script,  Dreamweaver,  Oracle 
etc;  analyze  document  reqs  and 
recommend  software  solutions; 
analyze  appl  architecture,  de¬ 
sign  appls  by  creating  prototype 
solutions  and  study  feasibility; 
create  software  development 
plans,  implement  strategies  to 
improve  business  processes. 
Provide  comprehensive  support 
for  product  lifecycle  business 
processes,  platform,  and  inte¬ 
gration  reqs  utilizing  various 
PLM  tolls  including  Agile  & 
SCMnet.  Require  a  Bachelor’s 
degree  or  foreign  equivalent  in 
CS/Business/Engineering  and  2 
yrs  exp  in  web  technology.  In 
lieu  of  a  Bachelors,  3  yrs  of  aca¬ 
demic  studies  in  one  of  stated 
fields  plus  1  extra  yr  of  work  exp 
in  web  technology  will  be  ac¬ 
cepted.  Competitive  salary,  f/t. 
Send  resumes  to  HR,  Amkor 
Technology,  1900  South  Price 
Road,  Chandler,  AZ85248. 
Refer  Job  Id  AKT1104 


Software  Professionals  in  pro¬ 
gramming/analysis,  systems  an¬ 
alysis,  QA  engineering  &  testing, 
software  engineering,  systems 
administration,  and  related  fields 
at  all  levels,  including  project 
lead  and  manager,  with  relevant 
bachelor's  degree/equivalent. 
Also  seeking  Business  Develop¬ 
ment  Managers,  Business  De¬ 
velopers,  Business  Analysts, 
Market  Research  Analysts, 
Sales  Engineers,  Technical  Re¬ 
source  Management  profession¬ 
als  (several  levels,  Associates/ 
Sr.Executives/Managerj/Senior 
level  positions  require  graduate 
degree/equivalent.  May  be  relo¬ 
cated  for  short  and  long  term 
assignments  throughout  the 
U.S.A.  Zensar  Technologies, 
Inc.,  One  North  LaSalle,  Suite 
3650,  Chicago,  IL  60602.  Send 
resume  &  cover  letter  detailing 
position  sought  &  relevant  expe¬ 
rience  to  balu@usa.zensar.com. 
Please  quote  reference  CW / 
Zensar  in  all  your  mails. 


Medical  Device  Software 
Engineer  sought  by  Medical 
device  dvlpr  to  work  at  Ann 
Arbor,  Ml  facility.  Will  research, 
dsgn  &  dvlp  complex  comp 
s/ware  systms  in  conjunction 
w/hardware  product  dvlpmt  for 
medical  applies  by  applying  prin¬ 
ciples  &  techniques  of  comp  sci, 
engg  &  mathematical  analysis. 
Will  be  responsible  for  mainte¬ 
nance  of  existing  systm  s/ware 
ind  debugging,  testing  & 
implmtg  necessary  improve¬ 
ments.  Req  Master's  in  Comp 
Sci/Engg  or  Electrical  Engg  &  6 
yrs  of  s/ware  dvlpmt  exp  incl  3 
yrs  exp  in  medical  device  arena. 
Interested  candidates  send 
resume  to  Leslie  Wild,  HR 
Generalist,  Terumo  Heart,  Inc.. 
6200  Jackson  Rd.,  Ann  Arbor, 
Ml  48108. 


Project  Managers  to  lead/man¬ 
age  teams  to  study,  analyze, 
customize  and  develop  Portal 
intranet  billing  appls  using  C, 
Pro-C,  Oracle  procedures,  trig¬ 
gers,  Unix  shell  scripts  etc;  lead 
teams  to  develop  custom  GUI 
tools  in  VB  using  portal  COM 
objects;  mentor  in  development 
of  Oracle  triggers,  packages, 
procedures,  view  and  pro-C  for 
data  retrieval/data  migration; 
evaluate,  test,  train  team  mem¬ 
bers.  Require  MS  (or  foreign 
equiv)  in  CS/Computer  Engg  &  1 
yr  exp  in  portal  intranet  billing 
F/T.  Competitive  salary.  Travel 
involved.  Resumes  to  HR, 
Intercall,  Inc.,  1211  O.G.  Skinner 
Drive,  West  Point,  GA31833. 
Please  refer  Job  ICI1104. 


Internet  Development  Analyst. 
Responsible  for  planning,  devel¬ 
oping  and  deploying  eBusiness 
applications  and  technologies  in 
support  of  Roche's  business 
activities.  Specifically:  Develop¬ 
ing  new  web  applications,  as 
well  as  extensions,  modifica¬ 
tions  and  interfaces  to  existing 
eBusiness  applications;  Provid¬ 
ing  technical  expertise  and  ana¬ 
lysis  support  to  customers  wish¬ 
ing  to  make  use  of  eBusiness 
technologies,  Performing  pro¬ 
cess  analysis,  design  of  applica¬ 
tion  architectures,  code  writing 
and  unit  testing;  Leading  large 
development  projects  requiring 
in-depth  knowledge  of  complex 
development  languages,  func¬ 
tion  and  interface  design;  Com¬ 
municating  and  coordinating 
with  end  users,  contractors,  sys¬ 
tem  administrators  and  other 
development  or  maintenance 
personnel  Prior  experience  must 
include  database  migration  and 
development  of  multiple  ecom- 
merce  web  applications.  The 
position  requires  an  BS  in  Elec¬ 
tronics  or  Computer  Engineering 
and  5  years  in  the  job  offered  or 
5  years  of  program/system  an¬ 
alysis.  Submit  resume  and  so¬ 
cial  security  number  to:  Kathy 
Sanders,  Roche  Diagnostics, 
9115  Hague  Road,  Indianapolis, 
IN  46250.  No  phone  calls 
please. 

Health  Systems  Analyst 

Programmer  1  to  develop  and 
support  advanced  healthcare 
software  applications  in  a  highly 
distributed  environment,  provide 
real-time  connectivity  to  propri¬ 
etary  clinical  repositories,  serve 
as  technical  lead  on  Intranet 
development,  and  provide 
development  for  the  electronic 
messaging  system.  Requires' 
Master  degree  in  Computer 
Science,  at  least  24  months 
experience  in  programming. 
Must  have  advanced  back¬ 
ground  experience  in  using  the 
Perl  programming  language  to 
provide  connectivity  to  MySQL 
databases  and  Common 
Gateway  Interface  applications. 
Must  have  strong  experience 
with  generating  PNG  (Portable 
Network  Graphics)  for  real-time 
visualization  of  clinical  data. 
Must  have  advanced  experience 
with  Javascript,  HTML,  DOM, 
CSS,  and  XML.  Needs  to  be 
willing  to  provide  24x7  support 
for  mission-critical  applications. 
Should  be  familiar  with  the  clini¬ 
cal  environment.  Medical 

research  experience  is  also 
required.  Please  send  resume 
to  Dario  Giuse,  Vanderbilt 
University,  Eskind  Biomedical 
Library  4th  floor,  2209  Garland 
Ave,  Nashville,  TN  37232-8340. 

Sr.  B/z  Analyst  for  d/base  bk/up 
&  recovery.  Solve  appln  issues 
of  Sybase,  SQL  Server  2000, 
MS  SQL  Cluster  Server,  Win  2K, 
NT  and  DB  Artisan  7.3.  D/zn 
XML  docs,  w/  XML  schemas, 
dev.  XML  transln  modules  w/ 
XSLT.  D/zn  &  dev  XML  schema, 
web  services  to  receive  info, 
from  external  sys  &  validate, 
parse/load  info  into  d/base. 
Admin  B/z  Obj  &  Crystal 
Enterprise  servers  over  multiple 
loens.  Documentum  5x  admin 
and  dev  exp,  Support  applns  on 
cold  fusion  servers  to  create/ 
display  reports  for  web  site.  Perf 
B/z  Obj.  Enterprise  6  Instals/ 
migrns.  Appl  Foundation,  Dash 
board  and  VBA.  Asst  in  train/g 
of  records  mngmt  pracs.  Supp 
devmt  &  implemtn  of  spl 
research  initiatives.  Prov  con¬ 
sult  &  tech  supp.  Budgets  & 
schedule  for  24/7  records  &  doc. 
control  org.  BS  in  Eng.  +  2  yr. 
exp.  in  job  duties.  Apply: 
Resourcis  -  Code  KK.,  1000 
Abernathy  Road,  #  1010, 

Atlanta,  GA  30328  w /  proof  of 
perm.  W/k  authzn. 

PROG.  ANALYST  -  JAVA.  J2EE 

Using  dsgn  patterns,  compo¬ 
nent-oriented  agile  methodolo¬ 
gies,  service-oriented  architec¬ 
ture  &  domain  knowledge,  archi¬ 
tect  validations  in  web  client 
component  using  server-side 
Java  J2EE.  Dvlp  module  for 
reflecting  electronic  document 
exchange  for  web  &  desktop 
users.  BS  degree  in  Comp.  Sci. 
or  Electrical  or  Electronics 
Engnrg  +  2  yrs  exp.  in  job 
offered  or  as  a  Software  Engnr 
Java  J2EE.  Exp.  must  incl.  Java 
J2EE  architecture  dsgn  pat¬ 
terns,  EJB  &  JMS,  XML  parsing 
technologies,  C/C++  &  concur¬ 
rency/threading  expertise.  High 
mobility  preferred.  40  hrs/wk, 
OT  as  reqd,  8am  -  5pm, 
$66,730/yr.  Submit  resume  to: 
Manager,  Butler  County 

CareerLink,  Pullman  Commerce 
Center,  112  Hollywood  Drive, 
Suite  101,  Butler,  PA  16001- 
5699.  Refer  to  Job  Order  No. 
476674. 

Business  Program  Applications 
Analyst.  Analyze,  define  & 
design  complex  business 
processes  for  application  to 
electronic  data  processing  sys¬ 
tems,  both  at  the  local  unit  &  the 
enterprise  levels.  Lead  complex 
projects  &  provide  direction  to 
others  in  performing:  Systems 
analysis,  applications  program¬ 
ming,  database  administration, 
business  process  analysis,  & 
systems  specialization.  Req¬ 
uires  B.S.  in  Business  Adm¬ 
inistration,  Commerce  or 
Information  Systems.  Also  need 
2  yrs  performing  enterprise 
resource  planning  with  software 
such  as  J.D.  Edwards  programs. 
8:00  -5:00,  M-F.  Must  have  proof 
of  legal  authority  to  work  indefi¬ 
nitely  in  the  U.S.  Submit 
resumes  to:  S.  Ardelean,  HR 
Manager,  BorgWarner  Inc., 
3800  Automation  Avenue, 
Auburn  Hills,  Ml  48326 

Unica  Corp.  a  leading  provider 
of  Enterprise  Marketing 

Management  Solutions,  is  look¬ 
ing  for  a  qualified  Software 
Engineer  to  work  with  enterprise 
applications  and  n-tier  architec¬ 
tures  to  develop  Java-based, 
next-generation  enterprise  mar¬ 
keting  applications.  Must  have  a 
Bachelor's  degree  in  CS, 
Engineering  or  similar  field  and 
relevant  advanced  study, 
research  or  experience  in  web 
applications  development.  Re¬ 
quires  JavaScript,  Java,  JDBC, 
XSLT,  Servlets  and  Java 
Security  Frameworks:  Ui.  data¬ 
base  and  middleware;  DB2  and 
Oracle;  Windows  and  UNIX 
(Solaris)  operating  systems. 
Forward  resumes  to  Job  code 
#5,  Human  Resources,  Unica 
Corp.,  Reservoir  Place,  North 
170  Tracer  Lane,  Waltham.  MA 
02451,  or  e-mail: 
careers@unica.com 

Programmer  Analysts 

Needed.  Seeking  qual.  can¬ 
didates  possessing  BS/ 
equiv.  &  rel  work  exp. 
Duties  include:  Plan,  devel¬ 
op,  &  analyze  applications. 
Code,  test  &  debug  pro¬ 
grams.  Work  with  at  least  2 
of  the  following:  Tuxedo, 
Corba,  Visual  Basic,  Java, 
and  J2EE.  Fwd.  res.,  ref.  & 
sal.  req.  to  UBICS  Inc., 
Attn:  HR,  333  Technology 
Dr.,  Ste.  210,  Canonsburg, 
PA  15317. 

Programmer  Analysts  to  analyze, 
develop  appls  using  C,  C++,  Java, 
XML,  VBScript.  VB,  HTML.  SQL, 
etc;  use  Mercury  Win  Runner  & 
Load  Runner  to  provide  automat¬ 
ed  functional/  regression  testing, 
performance  load  and  stress  test¬ 
ing  for  web  based  appls;  interact 
with  clients,  end  users  for  reqs 
gathenng.  analysis,  planning  & 
implementation;  modify  and  debug 
existing  software  appls.  Require 
BS  or  foreign  equiv  in  CS/Engg 
(any  branch)  with  2  yrs  of  exp  in  IT 
or  an  MS  or  foreign  equiv  in  one  of 
the  above  fields  F/T.  competitive 
salary.  Travel  involved.  Resumes 
to:  HR,  Semafor  Technologies, 
Inc.,  3300,  Holcomb  Bridge  Road, 
Ste212.  Ncrcross,  GA30092. 
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Forbes.com _ 

Tests  New  Data  Center 

Spirent  helps  leading  business  site 
ensure  performance 

Michael  Smith  .Vice  President  and  COO,  Forbes.com 
“By  helping  us  prevent  downtime,  Avalanche  saves  us  time  and  money.  ” 


If  you  want  up-to-date  business  news,  chances 
are  you’ve  visited  Forbes.com.  The  popular  Web  site 
is  known  not  only  for  its  original,  in-depth  report¬ 
ing  but  also  for  its  comprehensive  lists.  These  lists 
range  from  the  Forbes  2000,  a  ranking  of  the  world’s 
biggest  companies,  to  surveys  of  the  best  business 
schools. 

To  ensure  their  site  meets  visitors’  expectations 
for  performance  and  availability,  Forbes.com  tests 
its  Web  infrastructure  regularly  with  the  Avalanche 
load-testing  appliance  from  Spirent  Communica¬ 
tions.  Testing  with  Avalanche  not  only  helped  the 
company  prepare  for  their  move  to  a  new  data 
center,  but  also  assures  Forbes.com  that  their  Web 
site  is  prepared  to  handle  the  spikes  in  traffic  that 
come  with  the  release  of  its  popular  lists. 

Moving  to  a  New  Data  Center 

Forbes.com  is  one  of  the  most  trusted  informa¬ 
tion  resources  for  international  business  leaders 
and  senior  executives.  The  site  provides  real-time 
business  news,  stock  and  mutual  fund  quotes,  com¬ 
prehensive  company  profiles  and  a  wide  array  of 
interactive  tools,  including  the  famous  Forbes  lists. 

In  late  2003,  the  company  realized  that 
Forbes.com  had  outgrown  its  data  center.  In 
December,  Forbes.com  prepared  to  move  to  a  new 
center  that  could  better  accommodate  its  growth. 


“There  was  absolutely  no 
question  that  we  were  going 
to  stick  with  the  Avalanche !” 


“We’d  been  in  our  existing  site  for  four  years  and 
had  outgrown  it,”  says  Michael  Smith,  vice  president 
and  COO  of  Forbes.com.  “We  were  upgrading  our 
hardware  to  new  Foundry  Networks  core  routers 
and  switches  and  our  software  to  Linux,  so  we  had  a 
chance  to  start  fresh  and  make  sure  the  site  became 
^3?  faster  and  more  scalable.  We  want  to  ensure  that 


the  user  experience  is  as  responsive  when  we’re 
experiencing  high  traffic  on  an  atypical  list  release 
day  as  it  is  on  a  regular  business  day.” 

To  ensure  the  cutover  would  be  successful, 
Forbes.com  decided  to  test  the  stability  and  availabil¬ 
ity  of  its  new  Web  infrastructure  with  the  Avalanche 
2500  load-testing  appliance  from  Spirent  -  a  prod¬ 
uct  the  company  had  used  to  test  its  Web  site  since 
2001.  “There  was  absolutely  no  question  that  we 
were  going  to  stick  with  the  Avalanche,”  Smith  says. 

As  one  of  the  top  business  sites  on  the  Web, 
Forbes.com  gets  a  high  volume  of  traffic  on  a  daily 
basis.  However,  that  traffic  level  spikes  on  the  days 
that  the  site  releases  its  lists.  In  addition,  Forbes.com 
adds  new  functionality  every  week  to  the  150-plus 
applications  that  run  the  site.  The  company  can’t 
afford  for  its  site  to  be  down,  because  visitors  will 
simply  click  over  to  a  competitor’s  site. 

“It’s  critically  important  that  we  constantly 
test  the  site  to  ensure  that  it  has  the  scalability  to 
handle  both  surges  in  traffic  and  the  addition  of 
new  software,”  Smith  says.  “We  need  a  tool  that 
can  push  traffic  far  beyond  what  we  think  we’ll  get, 
so  we  can  analyze  our  upper  limits  and  anticipate 
where  things  might  break.” 

Optimizing  TCP  Throughput 

During  the  tests  on  Forbes.com’s  new  data  cen¬ 
ter  infrastructure,  the  team  used  the  Avalanche  test 
appliance  from  Spirent  Communications  to  gener¬ 
ate  a  mix  of  users  and  traffic  rates  that  emulated 
the  expected  traffic  on  Forbes.com.  The  test  team 
configured  the  Avalanche  to  simulate  30,000  con¬ 
current  users  and  12,000  to  15,000  hits  per  second 
while  the  site  served  up  more  than  400  Mbps  of 
content. 

Through  Avalanche  testing,  the  team  discovered 
that  throughput  was  below  acceptable  levels,  with 
the  site  serving  only  a  fraction  of  the  required  pages. 
By  testing  with  Avalanche,  they  identified  the  poten¬ 
tial  breaking  point  of  the  new  site. 

The  team  quickly  set  up  tests  to  identify  the  limit¬ 
ing  performance  thresholds  across  several  metrics 
-  bandwidth,  transactions  per  second  and  concur¬ 


Contact  Spirent  at  1-800-927-2660  or  to  download  the 
Forbes.com  case  study,  go  to: 

zvzvzv.  spirentcom.com/forbes 


rent  users.  Once  the  bottlenecks  were  identified, 
it  was  revealed  that  the  Forbes.com  traffic  mix  had 
been  constrained  by  servers  that  were  accepting  a 
low  rate  of  new  TCP  connections. 

The  servers  in  the  new  data  center  had  been 
tuned  to  create  more  TCP  connections  than 
the  previous  process  could  actually  thread.  By 
re-tuning  the  new  servers  to  deliver  a  higher  level 
of  TCP  throughput,  a  more  robust  user  experience 
was  achieved. 


“We  used  the  Avalanche  to 
test  the  limits  of  the  new  site 
until  we  felt  that  it  was  ready 
to  flip”  Smith  says.  “When 
we  cut  over ,  we  had  every 
confidence  that  it  would  run 
perfectly  —  and  it  did.  ” 


Flawless  Performance 

After  optimizing  the  Web  servers,  Forbes.com 
used  the  Avalanche  to  test  its  application  servers, 
the  performance  of  hardware  devices  such  as  load 
balancers  and  even  the  failover  site.  When  the  day 
came  to  switch  over  to  the  new  site,  Forbes.com  felt 
completely  secure  that  the  new  Web  infrastructure 
could  handle  the  demands  of  real-world  traffic. 

“We  used  the  Avalanche  to  test  the  limits  of  the 
new  site  until  we  felt  that  it  was  ready  to  flip,”  Smith 
says.  “When  we  cut  over,  we  had  every  confidence 
that  it  would  run  perfectly  -  and  it  did.  The  enhanced 
reliability  and  performance  achieved  through 
Avalanche  testing  has  delivered  immeasurable 
value.  By  helping  us  prevent  downtime,  Avalanche 
saves  us  both  time  and  money." 
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shoring  remains 
hot  issue  for  IT 


■  BY  JENNIFER  MEARS 

Corporate  users  in  growing  numbers  are  turning  to  offshore  services 
providers  as  a  way  to  cut  costs,  boost  efficiencies  and  focus  domestic 
IT  staff  on  more  business-related  tasks,  analysts  say 

According  to  Gartner  and  IDC,  both  of  which  issued  predictions  for 
2005  last  week,  the  market  for  offshore  IT  services  will  more  than  dou¬ 
ble  from  about  3%  of  overall  IT  services  spending  to  between  6%  and 
7%  of  overall  spending  in  the  next  three  years.  Gartner  expects  offshore 
IT  services  spending  to  reach  $50  billion  by  2007. 

Along  with  the  growth  comes  an  expansion  in  the  types  of  services 
that  offshore  providers  will  offer  as  the  market  matures,  analysts  say 

A  research  note  IDC  published  in  October  said  the  use  of  offshore 
providers  for  application-related  services  would  grow  at  a  particularly 
fast  rate. 

The  research  firm  says  offshore  IT  service  providers  attracted  about 
11%  of  U.S.  spending  on  custom  application  development,  systems 
integration  and  application  management  services  in  2003.  The  2004 
percentage  is  expected  to  reach  17%,  and  by  2008  nearly  a  quarter  of 
U.S.  spending  on  application  development,  integration  and  manage¬ 
ment  services  will  go  to  offshore  providers,  IDC  says. 

While  companies  typically  send  low-end  application-related  services 
such  as  maintenance  and  coding  offshore  today,  the  complexity  of  ser¬ 
vices  that  offshore  providers  deliver  will  deepen,  analysts  say 

“Offshore  competencies  will  continue  to  move  upstream  into”  busi¬ 
ness  process  outsourcing,  Frank  Gens, senior  vice  president  of  research 
at  IDC,  said  during  a  conference  call  discussing  the  2005  predictions. 
“We’re  talking  about  things  like  CRM  and  call  centers  being  the  focus, 
finance  and  accounting,  in  addition  to  remote  infrastructure  and  appli¬ 
cation  management.  It’s  already  happening. . .  .We’re  going  to  see  accel¬ 
eration  in  those  areas  in  2005.” 

The  trend  of  using  offshore  providers  is  creating  a  new  business  envi¬ 
ronment  for  corporations  that  must  consider  their  IT  decisions  from  a 
global  perspective,  says  Frances  Karamouzis,  a  research  director  at 
Gartner. 

“Every  task  has  to  be  decoupled  from  the  overall  process,  and  the 
company  has  to  be  asking  essentially,  Am  I  getting  the  best  prevailing 
global  price  for  this  particular  competency  regardless  of  where  it 
resides  in  the  world?’” she  says.B 


10G-earing  up 

HP  and  Alcatel  are  launching  10G  wares  this  week,  with  more  to  come  in  the  new  year. 


Product 

Description 

Price 

Availability 

HP  ProCurve  Edge 
Fabric  switches 

Eight-  and  16-port  LAN  core  switches 
with  10G  and  Gigabit  support 

Not  available 

Q2  2005 

HP  ProCurve  6400 

series 

Eight-port  10G  switches  for  LAN 
aggregation 

$7,300  for  CX-4  copper; 
$42,790  for  fiber 

Now 

Alcatei  OmniSwitch 

6800  series 

24-  and  48-port  workgroup 
switches  with  10G  uplinks 

$4,500  to  $7,500,  plus 
$5,000  for  10G  uplinks 

Now 

HP 

continued  from  page  14 

had  been  developing  an  enter¬ 
prise  switch  with  redundant  fab¬ 
rics  and  aimed  at  high-band¬ 
width  LAN  backbones. 

“It’s  a  bold  idea,”  says  Max  Flisi, 
an  analyst  with  IDC  on  the  Edge 
Fabric  concept.  “The  one  caveat 
for  them  will  be  how  to  present 
this  to  customers.”With  Cisco  and 
its  competitors  constantly  pack¬ 
ing  features  into  switches,  selling 
boxes  for  the  LAN  core  with  an 
emphasis  on  simplicity  might  be 
tough.“People  may  have  invested 
money  in  building  an  intelligent 
infrastructure  [in  the  core]. Then 
to  have  [HP]  saying  that  that  is 
not  useful  anymore  .  .  .  might 
scare  some  people.” 

The  Edge  Fabric  switches 
should  boost  HP’s  momentum  in 
the  modular  LAN  switch  market, 
observers  say.  According  to 
Synergy  Research  Group,  HP  was 
second  to  Cisco  in  the  number 
of  modular  switch  ports  shipped 
in  the  first  half  of  2004  (with 


Buzz 

continued  from  page  74 

was  a  thing  called  "The  Nifty  50."  It  was  a  set  of 
application  templates  that  were  starter  apps,  so 
to  speak,  that  were  built  on  top  of  Notes  3.  It 
bridged  a  lot  of  people  into  understanding  and 
they  just  started  to  build  more  things. 

In  Release  4.5  e-mail  and  calendaring  became 
world-class.  It  was  concurrent  with  the  release 
of  [Microsoft]  Exchange,  and  it  suddenly  set  in 
motion  thousands  of  companies  putting  out 
REPs  for  e-mail  systems  and  then  picking  one, 
either  Exchange  or  Notes. 

Th'-  lust  major  event  is  in  '95  when  IBM  bought 
Lotus.  People  don't  realize  this,  but  we  had 
shipped  about  2.2  million  seats  of  Notes  before 
IBM,  and  i3M  rapidly  jacked  that  up  to  100  mil¬ 
lion-plus. 

What  was  your  reaction  when  it  was  first  made 
clear  to  you  that  13M  was  going  to  buy  Lotus? 

[IBM  CEO  Louis]  Gerstner  looked  me  in  the 
eye  one-on-one  and  said,  ‘Ray,  we're  not  going  to 
spend  $3  billion  on  Notes,  $3.5  billion  on  Lotus, 
to  screw  it  up,  so  stick  around  and  we’ll  make  it 
what  you  wanted  it  to  be.’  I  was  willing  to  give 


them  a  chance  because  it  was  extremely  gen¬ 
uine.  No,  I  didn’t  like  the  fact  that  Lotus  was  los¬ 
ing  its  independence,  but  so  many  people  had  put 
so  much  love  into  that  product  for  so  long  that 
we  wanted  to  give  it  a  chance.  And  they  did  what 
they  said  they  were  going  to  do. 

What’s  your  sense  as  to  whether  Notes  will  con¬ 
tinue  on  as  an  independent  product? 

IBM  has  a  history  of  never  forcing  its  cus¬ 
tomers  through  tremendous  changes;  there  are 
S/360s  out  there  that  are  still  cranking  along.  So 
I  don't  see  that  they  would  do  something  so 
reckless  as  to  stop  something.  What's  very  clear 
is  that  Notes  has  transitioned  into  a  cash  cow; 
it’s  not  at  the  leading  edge  of  their  initiatives. 
Workplace  is  at  the  leading  edge,  and  they  would 
like  to  for  very  pragmatic  business  reasons  sell 
more  DB2  and  Websphere  and  the  things  that 
they  regard  as  more  contemporary  technologies 
than  Notes.  So  I  think  you'll  see  a  lot  of  mar- 
ketechture  that  unifies  two  architectures,  and 
you'll  see  active  selling  efforts  on  the  newer 
stuff.The  older  stuff  will  gracefully  stabilize. 


We  should  all 
buzz@nww.  com. 


be  so  lucky.  Comments  to 


9.4%  vs.  Cisco’s  74%  market 
share).  HP  sold  more  modular 
switches  than  rivals  Enterasys 
Networks,  Extreme  Networks, 
Foundry  Networks  and  Nortel  by 
almost  three-to-one.  HP’s  modu¬ 
lar  switch  ports  also  average 
about  70%  less  than  the  industry- 
average  cost  for  a  modular 
switch  port  Synergy,  says. 

HP  this  week  also  is  debuting  a 
new  LAN  aggregation  switch 
with  all  10G  connections.  The 
ProCurve  6400  series  includes 
two  eight-port  boxes  with  either 
all  copper  (10GBase-CX4)  or 
fiber  (lOGBase-LX)  connections. 

The  boxes  are  aimed  at  aggre¬ 
gating  10G  uplinks  from  wiring 
closets,  or  for  connecting  data 
center  switches  or  servers.  HP 
also  announced  the  availability 
of  10G  Ethernet  network 
adapters  —  from  S2IO  —  on  its 
9000  PA-RISC  and  Integrity  Itan¬ 
ium  servers. 

Also  on  the  10G  front  this 
week,  Alcatel  is  introducing  a 
family  of  Layer  3  workgroup 
switches  called  the  OmniSwitch 
6800  that  feature  10G  bit/sec 
uplinks. 

The  OmniSwitch  6800-24  has 
24  10/1 00/ 1 000M  bit/sec 

Ethernet  ports,  with  four  of  those 
ports  configurable  for  copper  or 
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fiber  uplinks.  It  is  designed  to  be 
complementary  to  the 
OmniSwitch  6800-48,  a  48-port 
switch  with  a  slot  for  optional 
one-  or  two-port  10G  bit/sec 
uplinks.  Up  to  eight  of  these  two- 
switch  models  can  be  stacked  in 
any  mix  to  give  customers  need¬ 
ed  port  density 

The  new  switches  let  Alcatel 
users  link  a  wiring  closet  directly 
to  a  core  LAN  switch  with  10G 
Ethernet.  Competitors  3Com, 
Cisco,  Enterasys,  Extreme,  Foun¬ 
dry  and  HP  announced  similar 
offerings  earlier  this  year. 

The  average  corporate  wiring 
closet  supports  between  80  and 
90  access  ports  and  two  uplinks, 
says  Brian  Witt,  director  of  prod¬ 
uct  marketing  for  Alcatel’s  LAN 
switching,  so  these  switches  can 
meet  this  mainstream  need. 

The  third  switch  in  the  family  is 
the  OmniSwitch  6800-U24  with 
24  access  ports  that  can  be 
either  fiber  or  copper.  A  slot  on 
the  box  can  be  filled  with  either 
the  one-  or  two-port  10G  bit/sec 
uplink  card.  Witt  says  Alcatel 
envisions  this  as  an  aggregation 
switch  to  pull  together  traffic  for 
passing  on  to  core  switches  and 
routers.  For  smaller  networks,  the 
OmniSwitch  6800-U24  could  act 
as  a  core  switch,  he  says.  ■ 
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BaCkSpin  Mark  Gibbs 

And  the  winner  is... 


couple  of  weeks  ago  1  listed  my 
top  10  contenders  for  the  Gibbs 
Institute’s  Thanksgiving  Golden 
Turkey  Award  (www.nwfusion.com, 
DocFinder:4950). 

The  nominees  were  1)  The  SCO 
Group,  2)  the  FCC,3)  mail  servers 
that  send  non-delivery  notifications, 
4)  CompUSA,  5)  AT&T  Wireless  (aka  Cingular)  cus¬ 
tomer  service,  6)  the  Motion  Picture  Association  of 
America  (MPAA)  and  the  Recording  Industry  Asso¬ 
ciation  of  America  (RIAA),7)  Microsoft,  8)  Sun,  9) 
voting  machine  manufacturers  and  10)  every  printer 
manufacturer  that  uses  non-refillable  cartridges.  I 
asked  you  to  pick  the  winner  and  the  tens  of  thou¬ 
sands  of  responses  were  very  interesting. 

From  Italy  (Backspin  is  molto  international, you 
know),  reader  Jeff  Daniels  found  it  hard  to  choose 
between  SCO  and  Microsoft,  and  in  the  end  he 
plumped  for  SCO. 

Chris  Lunde  voted  for  one  of  my  favorites,  Comp¬ 
USA:  “You  are  spot  on  with  your  assessment.  I  cannot 
count  how  many  times  I’ve  just  walked  away  shak¬ 
ing  my  head  about  those  sales  droids.” 

Dariana  Lau  was  brief  and  to  the  point:  “My  vote: 
The  SCO  Group.  Good  riddance!” 

Bill  Dannon  was  torn  but  ultimately  decisive:“I 
think  it’s  a  dead-heat  between  No.  6,  No.  7,  No.  9  and 


No.  10,  but  I’ll  have  to  vote  for  (or  should  1  say 
against)  the  voting  machine  manufacturers.” 

Dannon’s  reason:“if  1  am  compelled  to  cast  a  bal¬ 
lot  through  a  dubious  mechanism  —  controlled  by 
a  company  that  has  openly  supported  one  candi¬ 
date  over  the  other  —  that’s  turning  democracy 
into  farce.” 

Dean  Weaver  chose  Microsoft  but  his  gripe  was 
about  a  different  issue:“Let’s  not  forget  Microsoft  and 
their  Xbox  Live.To  get  it  you  pay  $50  at  the  store  for  a 
one-year  subscription.  After  buying  it  you  have  to 
sign  up  through  the  Xbox  and  give  them  a  credit 
card  that  they  will  use  to  automatically  renew  your 
subscription  after  one  year!’ 

He  says  he  immediately  tried  to  cancel  the 
renewal  but  Microsoft  told  him  the  only  way  it 
could  do  that  was  to  turn  off  the  service  even 
though  it  was  already  prepaid  for  a  year. 

Weaver  went  on, “They  said  it’s  the  only  way  the  sys¬ 
tem  could  do  it.  Can  you  believe  that  from  the 
biggest  software  company  on  Earth!  Then  after  the 
year  is  up  and  you  want  to  cancel, you  think  you 
could  do  it  on  the  Xbox  you  signed  up  with,  but  no, 
you  have  to  find  a  well-hidden  phone  number  to  call 
them  and  cancel.” 

Interesting  that  Microsoft’s  business  practices  in 
this  area  look  remarkably  like  a  cross  between 
AT&T’s  brain-dead  customer  service  and  the  printer 


manufacturers’  cartridge-selling  scheme.  Leave  it  to 
Microsoft  to  go  that  extra  yard. 

“I  think  all  are  deserving,”  wrote  Charles  Ashbacher, 
“but  the  MPAA  and  R1AA  are  the  winners.  A  business 
model  based  on  legal  suits  against  your  customers  is 
unsustainable.” 

Ashbacher  pointed  out  that  “they  learned  nothing 
from  the  legal  action  over  VCRs  [that]  went  all  the 
way  to  the  Supreme  Court  and  the  Court  struck  it 
down.  Forced  to  live  with  the  reality  of  VCRs,  the 
[movie]  industry  incorporated  them  into  their  busi¬ 
ness  model  and  made  an  enormous  amount  of 
money  from  video  sales.  Had  they  had  the  sense  to 
use  it  to  their  advantage  rather  than  litigate  against  it, 
the  numbers  would  have  been  even  better. The  same 
reasoning  applies  here.” 

Finally,  reader  Will  Rigby  responded  with 
“root@localhost  $  cat  dreams  I  backspin@gibbs. 
com,”  pointing  out  “You  said  to  pipe  dreams  to  back- 
spin(s>gibbs.com!” 

Thanks  to  all  who  wrote.  Using  our  advanced  statis¬ 
tical  sampling  and  analysis  system,  we  conclude  that 
the  winner  of  the  Gibbs  Institute’s  Thanksgiving 
Golden  Turkey  award  is  . . .  ta-ta  —  ta-da-da  . . .  shared 
by  Microsoft  and  SCO. 

Steve  and  Dari,  get  in  touch  at  backspin@gibbs. 
com.  Your  prize  is  a  turkey  dinner  cooked  by  me. 
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By  Paul  McNamara 

Happy  birthday,  Ray 

Lotus  Notes  turns  15  tomorrow.  Iris 
Associates,  the  software  development 
company  from  whence  Notes  emerged  —  on  the  Lotus  dime  —  was  founded 
five  years  earlier  to  the  day.That's  reason  enough  to  get  Ray  Ozzie  on  the 
phone,  given  he  was  the  headliner  for  both  productions  before  leaving  Notes 
Nation  in  1997  to  start  Groove  Networks.  What  follows  are  the  highlights  of  our 
chat,  with  a  longer  version  to  be  found  at  www.nwfusion.com,  DocFinder:  4949. 

Do  you  ever  get  tired  of  talking  about  Notes,  maybe  the  way  singers  get  sick  of 
doing  their  big  hit? 

That's  funny  ...  I  don’t  get  tired  of  talking  about  it,  depending  on  the  conver¬ 
sation  and  which  way  it’s  spinning.  I  get  a  chance  to  surf  off  of  it  into  my  cur¬ 
rent  passions  and  what  I’m  talking  about  now,  and  I  hope  it  doesn’t  sound  like 
the  song  that  nobody  wants  to  hear. 

Take  us  back  to  the  day  you  trotted  out  Notes  1.0? 

At  the  time  Notes  was  launched,  Dec.  7,  1989,  we  had  one  customer  — 
Sheldon  Laube  from  PriceWaterhouse  —  who  shared  our  vision.  He  under¬ 
stood  enough  about  it,  and  he’s  a  great  communicator,  much  better  than  we 
were  about  the  value  of  Notes  at  the  time. 

This  was  an  era  of  re-engineering  the  corporation.  It  was  a  very  fortuitous 
time  for  Notes  to  be  coming  out  because  people  were  just  using  LANs  for 
•  •  ter  sharing,  and  they  could  now  leverage  that  simple  technology  for  light¬ 
weight  processes  within  the  enterprise.  By  '95  or  so  the  leading-edge  compa¬ 
nies  started  to  try  to  use  [Notes]  outside  the  company,  not  just  inside.  We  take 
this  for  granted  now,  but  it  was  fairly  interesting  and  turned  out  to  be  difficult 
because  Notes,  in  particular,  was  designed  for  centralized  management. 


That  was  ultimately  what  led  me  to  leave  and  start  Groove.  Whereas  Notes 
was  more  about  the  changing  nature  of  the  organization,  Groove  was  about  the 
changing  nature  of  business  in  general. 

When  did  you  know  you  had  something  big  with  Notes? 

I'll  say  something  that  lets  you  see  a  little  bit  about  my  personality:  I  knew  we 
had  something  before  we  started  the  company. 

Looking  back,  were  there  any  aspects  of  Notes  that  you  had  spot  on  from  the 
beginning  —  or  missed? 

We  missed  —  but  /  missed  clearly  —  the  immense  value  in  simple  publishing. 
When  I  first  saw  the  Web  —  Mosaic  —  I  am  ashamed  to  admit  that  I  said  to 
myself,  this  is  so  trivial,  it's  got  no  security,  you  can't  authenticate,  the  server 
doesn't  know  who  the  user  is  —  so  all  you  can  do  with  this  is  simple  publishing. 
I  should  have  foreseen  earlier  on  in  Notes  the  value  of  a  simpler,  anonymous 
client/reader  that  could  have  been  used  for  a  much  broader  set  of  applications 
than  it  was  initially. 

One  of  the  things  we  got  right ...  is  the  respect  for  offline  use  and  mobility. 
You  have  to  know  from  Day  1  when  you're  building  a  system  that  you  want  to 
treat  mobility  as  a  first-class  problem.  I  think  we  got  that  so  right,  and  it  amazes 
me  to  this  day  that  more  people  haven't  gotten  it  right. 

Why  do  you  think  that  is? 

It’s  hard,  and  you  can't  add  it  on,  particularly  the  integration  between  the 
storage,  communications  and  security. 

Are  there  milestones  through  the  early  years  of  Notes  that  you  thought  partic¬ 
ularly  important? 

This  is  not  widely  written  about  but  I  think  customers  understand  it:There 

See  Buzz,  page  72 
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